AIX lpd Multiple Functions Remote Overflow

critical Nessus Plugin ID 11355

Synopsis

The remote host is affected by multiple remote buffer overflow vulnerabilities.

Description

The remote lpd daemon seems to be vulnerable to various buffer overflows in the functions send_status(), kill_print() and chk_fhost().

*** Nessus solely relied on the version number of the remote
*** operating system to issue this warning, so this might be a
*** false positive

Solution

Apply patches from your vendor.

Plugin Details

Severity: Critical

ID: 11355

File Name: lpd_aix_overflow.nasl

Version: 1.17

Type: remote

Family: Gain a shell remotely

Published: 3/12/2003

Updated: 8/10/2018

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.7

CVSS v2

Risk Factor: Critical

Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Information

Vulnerability Publication Date: 9/11/2001

Reference Information

CVE: CVE-2001-0671

CERT-CC: CA-2001-30

Detections

Analytics