Vulnerabilities > CVE-1999-0032

CVSS 7.2 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

local

low complexity

exploit available

NVD

Published: 1996-10-25

Updated: 2008-09-09

Summary

Buffer overflow in lpr, as used in BSD-based systems including Linux, allows local users to execute arbitrary code as root via a long -C (classification) command line option.

Vulnerable Configurations

Part	Description	Count
OS	Sgi SGI Irix 5.0 SGI Irix 5.0.1 SGI Irix 5.1 SGI Irix 5.1.1 SGI Irix 5.2 SGI Irix 5.3 SGI Irix 6.0 SGI Irix 6.0.1 SGI Irix 6.1 SGI Irix 6.2 SGI Irix 6.3 SGI Irix 6.4	12
OS	Bsdi Bsdi BSD OS 2.1	1
OS	Freebsd Freebsd Freebsd 2.0 Freebsd Freebsd 2.0.5 Freebsd Freebsd 2.1.0 Freebsd Freebsd 2.1.5	4
OS	Next Next Nextstep 4.0 Next Nextstep 4.1	2
OS	Sun SUN Sunos 4.1.3U1 SUN Sunos 4.1.4	2

Exploit-Db

description	BSD/OS 2.1,FreeBSD 2.1.5,NeXTstep 4.0/4.1,SGI IRIX 6.4,SunOS 4.1.3/4.1.4 lpr Buffer Overrun Vulnerability (1). CVE-1999-0032,CVE-1999-0335. Local exploit for...
id	EDB-ID:19544
last seen	2016-02-02
modified	1996-10-25
published	1996-10-25
reporter	Vadim Kolontsov
source	https://www.exploit-db.com/download/19544/
title	BSD/OS 2.1,FreeBSD <= 2.1.5,NeXTstep 4.x,IRIX <= 6.4,SunOS 4.1.3/4.1.4 lpr Buffer Overrun1

description	BSD/OS 2.1,FreeBSD 2.1.5,NeXTstep 4.0/4.1,SGI IRIX 6.4,SunOS 4.1.3/4.1.4 lpr Buffer Overrun Vulnerability (2). CVE-1999-0032,CVE-1999-0335. Local exploit for...
id	EDB-ID:19545
last seen	2016-02-02
modified	1996-10-25
published	1996-10-25
reporter	Vadim Kolontsov
source	https://www.exploit-db.com/download/19545/
title	BSD/OS 2.1,FreeBSD <= 2.1.5,NeXTstep 4.x,IRIX <= 6.4,SunOS 4.1.3/4.1.4 lpr Buffer Overrun2

Vulnerabilities > CVE-1999-0032 {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"CVE-1999-0032"}]}

Summary

Vulnerable Configurations

Exploit-Db

References

Vulnerabilities > CVE-1999-0032