CVE-2000-1208

Published: Aug 12, 2002Modified: Apr 16, 2026

7.2

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Exploitability: 3.9 / Impact: 10.0

Source: NVD

Description

Format string vulnerability in startprinting() function of printjob.c in BSD-based lpr lpd package may allow local users to gain privileges via an improper syslog call that uses format strings from the checkremote() call.

Affected (6)

Products: Immunix: Immunix · Netbsd: Netbsd · Openbsd: Openbsd · +1 more

Show all products

Immunix: Immunix · Netbsd: Netbsd · Openbsd: Openbsd · Redhat: Linux

1 product

1 product

1 product

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Immunix Immunix	Version 6.2

Configuration B

5 vulnerable

Vulnerable Software	Affected Versions
Netbsd Netbsd	Version 1.4.1
Netbsd Netbsd	Version 1.4.2
Netbsd Netbsd	Version 1.4
Openbsd Openbsd	Version 2.7
Redhat Linux	Version 7.0

References (10)

http://marc.info/?l=bugtraq&m=96994604300675&w=2

Source: cve@mitre.org

http://online.securityfocus.com/archive/1/137555

Source: cve@mitre.org

http://www.iss.net/security_center/static/5286.php

Source: cve@mitre.org

PatchVendor Advisory

http://www.redhat.com/support/errata/RHSA-2000-066.html

Source: cve@mitre.org

PatchVendor Advisory

http://www.securityfocus.com/bid/1711

Source: cve@mitre.org

http://marc.info/?l=bugtraq&m=96994604300675&w=2