CVE-1999-0032

CVSS 2.0 Score 7.2 of 10 (high)

Details

Published Oct 25, 1996

Updated: Nov 20, 2024

Summary

CVE-1999-0032 is a buffer overflow vulnerability affecting the lpr utility, which is used for printing in BSD-based systems, including Linux. The issue arises when processing a long -C (classification) command line option, allowing local users to inject and execute arbitrary code with root privileges. This vulnerability poses a significant risk, as it enables attackers to gain unrestricted access to the affected system.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

SGI IRAX
FreeBSD
SunOS

Affected Vendors

Oracle Corp
FreeBSD Project
Saskatchewan Government Insurance

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/NEUHUC
https://www.cve.org/CVERecord?id=CVE-1999-0032
https://nvd.nist.gov/vuln/detail/CVE-1999-0032

Back to Vulnerability Database