[VIM] lpr overflow - multiple cve/osvdb?
jericho at attrition.org
Sun Jun 5 02:59:43 EDT 2005
Buffer overflow in BSD and linux lpr command allows local users to execute
commands as root through the classification option.
Buffer overflow in BSD-based lpr package allows local users to gain root
refs to: CVE-1999-0032 and CVE-1999-0335
refs to: CVE-1999-0032
The mail list attached to ISS 409 is 1996-10-25, -C option exploit.
This is currently OSVDB 1105 and 11499 (one for each cve), both NEW
As best I can tell, these are the same vuln based on the inbreeding of
ext-refs, the approx dates, and nothing (obvious) to suggest there is a
second parameter or method for exploiting.
More information about the VIM