CVE-2000-1220

CVSS 2.0 Score 10 of 10 (high)

Details

Published Jan 8, 2000

Updated: Nov 20, 2024

Summary

CVE-2000-1220 is a vulnerability affecting the line printer daemon (lpd) in the lpr package of multiple Linux operating systems. This issue grants local users the ability to execute arbitrary commands as root, exploiting a vulnerability in sendmail's handling of the -C option used to specify a configuration file. Successful exploitation of this vulnerability could lead to significant system compromise. Linux users are advised to update their lpr packages as soon as possible to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

SGI IRAX
Red Hat Enterprise Linux

Affected Vendors

Red Hat
Saskatchewan Government Insurance

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/NWlZN8
https://www.cve.org/CVERecord?id=CVE-2000-1220
https://nvd.nist.gov/vuln/detail/CVE-2000-1220

Back to Vulnerability Database