Vulnerability Details CVE-1999-0032
Buffer overflow in lpr, as used in BSD-based systems including Linux, allows local users to execute arbitrary code as root via a long -C (classification) command line option.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 44.9%
CVSS Severity
CVSS v2 Score 7.2
References
- ftp://patches.sgi.com/support/free/security/advisories/19980402-01-PX
- http://www.ciac.org/ciac/bulletins/i-042.shtml
- http://www.securityfocus.com/bid/707
- ftp://patches.sgi.com/support/free/security/advisories/19980402-01-PX
- http://www.ciac.org/ciac/bulletins/i-042.shtml
- http://www.securityfocus.com/bid/707
Products affected by CVE-1999-0032
-
cpe:2.3:o:bsdi:bsd_os:2.1
-
cpe:2.3:o:freebsd:freebsd:2.0
-
cpe:2.3:o:freebsd:freebsd:2.0.5
-
cpe:2.3:o:freebsd:freebsd:2.1.0
-
cpe:2.3:o:freebsd:freebsd:2.1.5
-
cpe:2.3:o:next:nextstep:4.0
-
cpe:2.3:o:next:nextstep:4.1
-
cpe:2.3:o:sgi:irix:5.0
-
cpe:2.3:o:sgi:irix:5.0.1
-
cpe:2.3:o:sgi:irix:5.1
-
cpe:2.3:o:sgi:irix:5.1.1
-
cpe:2.3:o:sgi:irix:5.2
-
cpe:2.3:o:sgi:irix:5.3
-
cpe:2.3:o:sgi:irix:6.0
-
cpe:2.3:o:sgi:irix:6.0.1
-
cpe:2.3:o:sgi:irix:6.1
-
cpe:2.3:o:sgi:irix:6.2
-
cpe:2.3:o:sgi:irix:6.3
-
cpe:2.3:o:sgi:irix:6.4
-
cpe:2.3:o:sun:sunos:4.1.3u1
-
cpe:2.3:o:sun:sunos:4.1.4