Plus Technologies Lpplus : Security vulnerabilities, CVEs

Copy

CVE-2000-0881

The dccscan setuid program in LPPlus does not properly check if the user has the permissions to print the file that is specified to dccscan, which allows local users to print arbitrary files.

Max CVSS

2.1

EPSS Score

0.04%

Published

2000-11-14

Updated

2017-12-19

CVE-2000-0880

LPPlus creates the lpdprocess file with world-writeable permissions, which allows local users to kill arbitrary processes by specifying an alternate process ID and using the setuid dcclpdshut program to kill the process that was specified in the lpdprocess file.

Max CVSS

3.6

EPSS Score

0.04%

Published

2000-11-14

Updated

2017-12-19

CVE-2000-0879

LPPlus programs dccsched, dcclpdser, dccbkst, dccshut, dcclpdshut, and dccbkstshut are installed setuid root and world executable, which allows arbitrary local users to start and stop various LPD services.

Max CVSS

2.1

EPSS Score

0.04%

Published

2000-11-14

Updated

2017-12-19

3 vulnerabilities found

This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!