CVE-1999-0032
CVSS 2.0 Score 7.2 of 10 (high)
Details
Published Oct 25, 1996
Updated: Nov 20, 2024
Summary
CVE-1999-0032 is a significant buffer overflow vulnerability affecting the lpr utility, commonly used in BSD-based systems such as Linux. Local users can exploit this flaw by inputting overly long -C command line options, which results in the buffer overflowing and allowing arbitrary code execution with root privileges. This vulnerability poses a serious risk as an attacker can gain complete control over the affected system. It is essential for system administrators to apply the necessary patches as soon as possible to mitigate this threat.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- SGI IRAX
- FreeBSD
- SunOS
Affected Vendors
- Oracle Corp
- FreeBSD Project
- Saskatchewan Government Insurance