CVE-2007-5381

Name of the Vulnerable Software and Affected Versions: Cisco IOS versions prior to 12.2(18)SXF11 Cisco IOS versions prior to 12.4(16a) Cisco IOS versions prior to 12.4(2)T6

Description: The issue is related to a stack-based buffer overflow in the Line Printer Daemon (LPD) service of Cisco IOS. This allows a remote attacker to execute arbitrary code by setting a long hostname on the target system and then causing an error message to be printed. For example, this can be demonstrated by a telnet session to the LPD from a source port other than 515.

Recommendations: For versions prior to 12.2(18)SXF11, update to version 12.2(18)SXF11 or later. For versions prior to 12.4(16a), update to version 12.4(16a) or later. For versions prior to 12.4(2)T6, update to version 12.4(2)T6 or later. As a temporary workaround, consider restricting access to the LPD service to minimize the risk of exploitation.