PT-2001-1588 · Data General · Dgux

Published

2001-05-24

Updated

2017-12-19

CVE-2001-0369

CVSS v2.0

7.2

High

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions DGUX version R4.20MU06 DGUX version R4.20MU02

Description A buffer overflow issue in the lpsched component allows a local attacker to gain root access by providing a long command line argument, specifically a non-existent printer name.

Recommendations For DGUX version R4.20MU06, update to a version that fixes the buffer overflow issue in lpsched to prevent local attackers from obtaining root access. For DGUX version R4.20MU02, update to a version that fixes the buffer overflow issue in lpsched to prevent local attackers from obtaining root access. As a temporary workaround, consider restricting access to the lpsched component to minimize the risk of exploitation.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2001-0369

Affected Products

Dgux

PT-2001-1588 · Data General · Dgux

CVE-2001-0369

Related Identifiers

Affected Products

References · 4