CVE-2000-1221

CVSS 2.0 Score 10 of 10 (high)

Details

Published Jan 8, 2000

Updated: Nov 20, 2024

Summary

CVE-2000-1221 is a vulnerability affecting the line printer daemon (lpd) in the lpr package of multiple Linux operating systems. Instead of using standard authentication methods, this component authenticates based on the comparison of the reverse-resolved hostname of the local machine to the hostname of the print server. This creates an opportunity for remote attackers to bypass intended access controls by manipulating the DNS records for the attacking IP address, effectively impersonating a trusted print server. This weakness, which was identified in the year 2000, could potentially lead to unauthorized access to the targeted system.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

SGI IRAX
Red Hat Enterprise Linux
Debian

Affected Vendors

Red Hat
Debian
Saskatchewan Government Insurance

Advisories, Assessments, and Mitigations

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Threats to the 2025 NATO Summit

Artificial Eyes: Generative AI in China’s Military Intelligence

GrayAlpha Uses Diverse Infection Vectors to Deploy PowerNet Loader and NetSupport RAT

Know What Matters

For Customers

For Partners