CVE-1999-0032

CVSS 2.0 Score 7.2 of 10 (high)

Details

Published Oct 25, 1996
Updated: Nov 20, 2024

Summary

CVE-1999-0032 is a significant buffer overflow vulnerability affecting the lpr utility, commonly used in BSD-based systems such as Linux. Local users can exploit this flaw by inputting overly long -C command line options, which results in the buffer overflowing and allowing arbitrary code execution with root privileges. This vulnerability poses a serious risk as an attacker can gain complete control over the affected system. It is essential for system administrators to apply the necessary patches as soon as possible to mitigate this threat.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • SGI IRAX
  • FreeBSD
  • SunOS

Affected Vendors

  • Oracle Corp
  • FreeBSD Project
  • Saskatchewan Government Insurance