Vulnerabilities > CVE-2000-1220

CVSS 10.0 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

network

low complexity

sgi

redhat

critical

exploit available

NVD

Published: 2000-01-08

Updated: 2017-07-11

Summary

The line printer daemon (lpd) in the lpr package in multiple Linux operating systems allows local users to gain root privileges by causing sendmail to execute with arbitrary command line arguments, as demonstrated using the -C option to specify a configuration file.

Vulnerable Configurations

Part	Description	Count
OS	Sgi SGI Irix 6.5 SGI Irix 6.5.1 SGI Irix 6.5.2 SGI Irix 6.5.3 SGI Irix 6.5.4 SGI Irix 6.5.5 SGI Irix 6.5.6 SGI Irix 6.5.7 SGI Irix 6.5.8 SGI Irix 6.5.9 SGI Irix 6.5.10 SGI Irix 6.5.11 SGI Irix 6.5.12 SGI Irix 6.5.13 SGI Irix 6.5.14F SGI Irix 6.5.14M SGI Irix 6.5.15F SGI Irix 6.5.15M SGI Irix 6.5.16F SGI Irix 6.5.16M SGI Irix 6.5.17F SGI Irix 6.5.17M SGI Irix 6.5.18F SGI Irix 6.5.18M	24
OS	Redhat Redhat Linux 4.0 Redhat Linux 4.1 Redhat Linux 4.2 Redhat Linux 5.0 Redhat Linux 5.1 Redhat Linux 5.2 Redhat Linux 6.0 Redhat Linux 6.1	8

Exploit-Db

description	BSD and Linux lpr Command Local Root Exploit. CVE-2000-1220. Local exploit for linux platform
id	EDB-ID:325
last seen	2016-01-31
modified	1996-10-25
published	1996-10-25
reporter	Vadim Kolontsov
source	https://www.exploit-db.com/download/325/
title	BSD & Linux - lpr Command Local Root Exploit

Redhat

advisories

rhsa

id	RHSA-2000:002

Vulnerabilities > CVE-2000-1220 {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"CVE-2000-1220"}]}

Summary

Vulnerable Configurations

Exploit-Db

Redhat

References

Vulnerabilities > CVE-2000-1220