• info
• discussion
• exploit
• solution
• references

LPRng Incorrect Installation Permissions Vulnerability

Solution:
This vulnerability was fixed in versions of LPRng after 3.6.15. Removing the setuid bit on the lpd binary will eliminate this vulnerability.