Solaris in.lpd Transfer Job Routine Remote Buffer Overflow

critical Nessus Plugin ID 10727

Synopsis

The remote host is affected by a buffer overflow vulnerability.

Description

The remote lpd daemon seems to be vulnerable to a buffer overflow when sent too many 'Receive data file' commands. An attacker may use this flaw to gain root on this host.

Solution

If the remote host is running Solaris, apply the relevant patch from Sun.

Plugin Details

Severity: Critical

ID: 10727

File Name: lpd_overflow.nasl

Version: 1.39

Type: remote

Family: Gain a shell remotely

Published: 8/22/2001

Updated: 7/14/2018

Configuration: Enable paranoid mode

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 5.9

CVSS v2

Risk Factor: Critical

Base Score: 10

Temporal Score: 7.4

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Information

Required KB Items: Settings/ParanoidReport

Exploit Ease: No known exploits are available

Vulnerability Publication Date: 1/19/2001

Reference Information

CVE: CVE-2001-0353

BID: 2894

CERT-CC: CA-2001-15

Detections

Analytics