CVE-2003-0136

Name of the Vulnerable Software and Affected Versions LPRng versions 3.7.4 through 3.8.9 LPRng (affected versions not specified) lprng-doc (affected versions not specified)

Description The issue allows local users to overwrite arbitrary files via a symbolic link attack on the /tmp/before file. Multiple vulnerabilities in the LPRng package can lead to disruption of confidentiality, integrity, and availability of protected information. These vulnerabilities can be exploited remotely or by a local attacker, depending on the context, and may result in the violation of data integrity.

Recommendations For LPRng versions 3.7.4 through 3.8.9, consider restricting access to the psbanner functionality to minimize the risk of exploitation. For LPRng with unspecified affected versions, at the moment, there is no information about a newer version that contains a fix for this vulnerability. For lprng-doc with unspecified affected versions, avoid using the package until the issue is resolved or consider disabling the vulnerable components as a temporary workaround.