CVE-2000-1221
CVE-2000-1221
The line printer daemon (lpd) in the lpr package in multiple Linux operating systems authenticates by comparing the reverse-resolved hostname of the local machine to the hostname of the print server as returned by gethostname, which allows remote attackers to bypass intended access controls by modifying the DNS for the attacking IP.
Produtos afetados
n/a · n/aPoCs públicas encontradas — 1
exploitdbwww.exploit-db.com/exploits/19722não verificado⚠ Recursos públicos, para você avaliar a exposição de sistemas que controla ou está autorizado a testar. Teste apenas com autorização.
Quer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
ftp://patches.sgi.com/support/free/security/advisories/20021104-01-Phttp://rhn.redhat.com/errata/RHSA-2000-002.htmlhttps://exchange.xforce.ibmcloud.com/vulnerabilities/3840http://www.atstake.com/research/advisories/2000/lpd_advisory.txthttp://www.debian.org/security/2000/20000109http://www.kb.cert.org/vuls/id/30308http://www.l0pht.com/advisories/lpd_advisoryhttp://www.securityfocus.com/bid/927