Sun.Solaris.LPD.Command.Execution

description-logoDescription

This indicates a possible attempt to exploit a remote command execution vulnerability in the Sun Solaris lpd daemon. The lpd daemon can be exploited by causing it to send specially crafted options to mail or sendmail. A remote attacker may be able to execute arbitrary commands on the target host with superuser privileges.

affected-products-logoAffected Products

Sun Solaris 8.0 and earlier.

Impact logoImpact

System compromise, arbitrary command execution.

recomended-action-logoRecommended Actions

See the following Sun documnt for patch information:
Security Vulnerability with the in.lpd(1M) Daemon Allowing Options to be Passed to Sendmail, Document ID: 41664 Apr 16, 2002

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2023-07-31 25.611 Name:SUN.
Solaris.
LPD.
Command.
Execution:Sun.
Solaris.
LPD.
Command.
Execution