Multiple Vendor lpd Remote Buffer Overflow Vulnerability

info
discussion
exploit
solution
references

Multiple Vendor lpd Remote Buffer Overflow Vulnerability

BSD-based line printer daemons such as 'in.lpd' or 'lpd' contain a remotely exploitable buffer overflow vulnerability.

Remote attackers can exploit this vulnerability to execute arbitrary code on the target host. The daemon runs with root privileges.

The daemon is enabled by default on AIX and Solaris systems.