Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-1583

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2001-1583
Last Modified 24 Jun 2010 12:00:00
Published 31 Dec 2001 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2001-1583

Summary

lpd daemon (in.lpd) in Solaris 8 and earlier allows remote attackers to execute arbitrary commands via a job request with a crafted control file that is not properly handled when lpd invokes a mail program. NOTE: this might be the same vulnerability as CVE-2000-1220.

Vulnerable Systems

Operating System

  • Sun Solaris 2.0

  • Sun Solaris 2.1

  • Sun Solaris 2.2

  • Sun Solaris 2.3

  • Sun Solaris 2.4

  • Sun Solaris 2.5

  • Sun Solaris 2.5.1

  • Sun Solaris 2.6

  • Sun Solaris 7.0

  • Sun Solaris 8.0


References

XF - solaris-lpd-sendmail-commands(7087)

BID - 3274

OSVDB - 15131

SF-INCIDENTS - 20010829 solaris lpd, KARMAPOLICE?

MISC - http://metasploit.com/projects/Framework/modules/exploits/solaris_lpd_exec.pm

BUGTRAQ - 20010831 Solaris LPD Exploit (fwd)


Last Updated: 27 May 2016 10:36:44