LPRng Failure To Drop Supplementary Groups Vulnerability

The LPRng software is an enhanced, extended, and portable implementation of the Berkeley LPR print spooler functionality.

When the LPRng daemon is initialized, it fails to drop its supplementary groups. As a result, the daemon and any child processes it spawns will maintain the supplementary groups inherited from the process that started LPRng.

Processes or routines which are meant to be run with lowered privileges will run with these supplementary group privileges. Vulnerable sections of program code are often run with lowered privileges because of susceptibility to attacks. Because they are not dropped, these privileges may be gained by an attacker if LPRng is vulnerable to such attacks.

This vulnerability is related to BID 2974.


 

Privacy Statement
Copyright 2010, SecurityFocus