Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2000-0615

Overview

Vulnerability Score 2.1 2.1
CVE Id CVE-2000-0615
Last Modified 05 Sep 2008 04:21:27
Published 19 Jul 2000 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2000-0615

Summary

LPRng 3.6.x improperly installs lpd as setuid root, which can allow local users to append lpd trace and logging messages to files.

Vulnerable Systems

Operating System

  • Astart Technologies Lprng 3.6.1

  • Astart Technologies Lprng 3.6.10

  • Astart Technologies Lprng 3.6.11

  • Astart Technologies Lprng 3.6.12

  • Astart Technologies Lprng 3.6.13

  • Astart Technologies Lprng 3.6.14

  • Astart Technologies Lprng 3.6.15

  • Astart Technologies Lprng 3.6.2

  • Astart Technologies Lprng 3.6.3

  • Astart Technologies Lprng 3.6.4

  • Astart Technologies Lprng 3.6.5

  • Astart Technologies Lprng 3.6.6

  • Astart Technologies Lprng 3.6.7

  • Astart Technologies Lprng 3.6.8

  • Astart Technologies Lprng 3.6.9


References

BID - 1447

BUGTRAQ - 20000709 LPRng lpd should not be SETUID root

XF - lpd-suid-root(7361)


Last Updated: 27 May 2016 10:35:48