10
CVE-2000-1221
- EPSS 16.73%
- Veröffentlicht 08.01.2000 05:00:00
- Zuletzt bearbeitet 16.06.2026 21:53:24
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
The line printer daemon (lpd) in the lpr package in multiple Linux operating systems authenticates by comparing the reverse-resolved hostname of the local machine to the hostname of the print server as returned by gethostname, which allows remote attackers to bypass intended access controls by modifying the DNS for the attacking IP.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Debian ≫ Debian Linux Version2.1
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 16.73% | 0.966 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 10 | 10 | 10 |
AV:N/AC:L/Au:N/C:C/I:C/A:C
|
ftp://patches.sgi.com/support/free/security/advisories/20021104-01-P
http://www.atstake.com/research/advisories/2000/lpd_advisory.txt
http://www.debian.org/security/2000/20000109
http://www.l0pht.com/advisories/lpd_advisory
http://www.securityfocus.com/bid/927
http://rhn.redhat.com/errata/RHSA-2000-002.html
http://www.kb.cert.org/vuls/id/30308
https://exchange.xforce.ibmcloud.com/vulnerabilities/3840