• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

LPRNG html2ps Remote Command Execution Vulnerability

Solution:
SGI has released advisory 20040104-01-P to address this issue. Patch 5424 will be released for IRIX versions later than 6.5.17. Users should upgrade to one of these versions and then apply the patch when it is available. Further details can be found in the attached advisory.

Fixes are available:


html2ps html2ps 1.0 b3

• Debian html2ps_1.0b3-1.1_all.deb
  Debian GNU/Linux 3.0 alias woody.
  http://security.debian.org/pool/updates/main/h/html2ps/html2ps_1.0b3-1 .1_all.deb


• Debian html2ps_1.0b3-1.2_all.deb
  Debian GNU/Linux 3.0 alias woody.
  http://security.debian.org/pool/updates/main/h/html2ps/html2ps_1.0b3-1 .2_all.deb


• S.u.S.E. html2ps-1.0b3-456.i386.rpm
  ftp://ftp.suse.com/pub/suse/i386/update/8.0/gra1/html2ps-1.0b3-456.i38 6.rpm


• S.u.S.E. html2ps-1.0b3-457.i386.rpm
  ftp://ftp.suse.com/pub/suse/i386/update/7.3/gra1/html2ps-1.0b3-457.i38 6.rpm


• S.u.S.E. html2ps-1.0b3-458.i586.rpm
  ftp://ftp.suse.com/pub/suse/i386/update/8.1/rpm/i586/html2ps-1.0b3-458 .i586.rpm


• S.u.S.E. html2ps-1.0b3-88.sparc.rpm
  ftp://ftp.suse.com/pub/suse/sparc/update/7.3/gra1/html2ps-1.0b3-88.spa rc.rpm


• S.u.S.E. lpdfilter-0.42-155.i386.rpm
  ftp://ftp.suse.com/pub/suse/i386/update/8.0/ap1/lpdfilter-0.42-155.i38 6.rpm


• S.u.S.E. lpdfilter-0.43-63.i586.rpm
  ftp://ftp.suse.com/pub/suse/i386/update/8.1/rpm/i586/lpdfilter-0.43-63 .i586.rpm

html2ps html2ps 1.0 B1

• Debian html2ps_1.0b1-8.2_all.deb
  Debian GNU/Linux 2.2 alias potato.
  http://security.debian.org/pool/updates/main/h/html2ps/html2ps_1.0b1-8 .2_all.deb


• S.u.S.E. html2ps-1.0b1-302.ppc.rpm
  ftp://ftp.suse.com/pub/suse/ppc/update/7.0/gra1/html2ps-1.0b1-302.ppc. rpm


• S.u.S.E. html2ps-1.0b1-303.ppc.rpm
  ftp://ftp.suse.com/pub/suse/ppc/update/7.1/gra1/html2ps-1.0b1-303.ppc. rpm


• S.u.S.E. html2ps-1.0b1-328.alpha.rpm
  ftp://ftp.suse.com/pub/suse/axp/update/7.0/gra1/html2ps-1.0b1-328.alph a.rpm


• S.u.S.E. html2ps-1.0b1-428.i386.rpm
  ftp://ftp.suse.com/pub/suse/i386/update/7.0/gra1/html2ps-1.0b1-428.i38 6.rpm


• S.u.S.E. html2ps-1.0b1-431.i386.rpm
  ftp://ftp.suse.com/pub/suse/i386/update/7.1/gra1/html2ps-1.0b1-431.i38 6.rpm


• S.u.S.E. html2ps-1.0b1-432.i386.rpm
  ftp://ftp.suse.com/pub/suse/i386/update/7.2/gra1/html2ps-1.0b1-432.i38 6.rpm

S.u.S.E. Linux 7.0

• S.u.S.E. html2ps-1.0b1-302.ppc.rpm
  ftp://ftp.suse.com/pub/suse/ppc/update/7.0/gra1/html2ps-1.0b1-302.ppc. rpm


• S.u.S.E. html2ps-1.0b1-328.alpha.rpm
  ftp://ftp.suse.com/pub/suse/axp/update/7.0/gra1/html2ps-1.0b1-328.alph a.rpm


• S.u.S.E. html2ps-1.0b1-428.i386.rpm
  ftp://ftp.suse.com/pub/suse/i386/update/7.0/gra1/html2ps-1.0b1-428.i38 6.rpm


• S.u.S.E. html2ps-1.0b1-302.src.rpm
  ftp://ftp.suse.com/pub/suse/ppc/update/7.0/zq1/html2ps-1.0b1-302.src.r pm


• S.u.S.E. html2ps-1.0b1-328.src.rpm
  ftp://ftp.suse.com/pub/suse/axp/update/7.0/zq1/html2ps-1.0b1-328.src.r pm


• S.u.S.E. html2ps-1.0b1-428.src.rpm
  ftp://ftp.suse.com/pub/suse/i386/update/7.0/zq1/html2ps-1.0b1-428.src. rpm

S.u.S.E. Linux 7.1

• S.u.S.E. html2ps-1.0b1-303.ppc.rpm
  ftp://ftp.suse.com/pub/suse/ppc/update/7.1/gra1/html2ps-1.0b1-303.ppc. rpm


• S.u.S.E. html2ps-1.0b1-431.i386.rpm
  ftp://ftp.suse.com/pub/suse/i386/update/7.1/gra1/html2ps-1.0b1-431.i38 6.rpm


• S.u.S.E. html2ps-1.0b1-303.src.rpm
  ftp://ftp.suse.com/pub/suse/ppc/update/7.1/zq1/html2ps-1.0b1-303.src.r pm


• S.u.S.E. html2ps-1.0b1-431.src.rpm
  ftp://ftp.suse.com/pub/suse/i386/update/7.1/zq1/html2ps-1.0b1-431.src. rpm

S.u.S.E. Linux 7.2

• S.u.S.E. html2ps-1.0b1-432.i386.rpm
  ftp://ftp.suse.com/pub/suse/i386/update/7.2/gra1/html2ps-1.0b1-432.i38 6.rpm


• S.u.S.E. html2ps-1.0b1-432.src.rpm
  ftp://ftp.suse.com/pub/suse/i386/update/7.2/zq1/html2ps-1.0b1-432.src. rpm

S.u.S.E. Linux 7.3

• S.u.S.E. html2ps-1.0b3-457.i386.rpm
  ftp://ftp.suse.com/pub/suse/i386/update/7.3/gra1/html2ps-1.0b3-457.i38 6.rpm


• S.u.S.E. html2ps-1.0b3-88.sparc.rpm
  ftp://ftp.suse.com/pub/suse/sparc/update/7.3/gra1/html2ps-1.0b3-88.spa rc.rpm


• S.u.S.E. html2ps-1.0b3-457.src.rpm
  ftp://ftp.suse.com/pub/suse/i386/update/7.3/zq1/html2ps-1.0b3-457.src. rpm


• S.u.S.E. html2ps-1.0b3-88.src.rpm
  ftp://ftp.suse.com/pub/suse/sparc/update/7.3/zq1/html2ps-1.0b3-88.src. rpm

S.u.S.E. Linux 8.0

• S.u.S.E. html2ps-1.0b3-456.i386.rpm
  ftp://ftp.suse.com/pub/suse/i386/update/8.0/gra1/html2ps-1.0b3-456.i38 6.rpm


• S.u.S.E. lpdfilter-0.42-155.i386.rpm
  ftp://ftp.suse.com/pub/suse/i386/update/8.0/ap1/lpdfilter-0.42-155.i38 6.rpm


• S.u.S.E. html2ps-1.0b3-456.src.rpm
  ftp://ftp.suse.com/pub/suse/i386/update/8.0/zq1/html2ps-1.0b3-456.src. rpm


• S.u.S.E. lpdfilter-0.42-155.src.rpm
  ftp://ftp.suse.com/pub/suse/i386/update/8.0/zq1/lpdfilter-0.42-155.src .rpm

S.u.S.E. Linux 8.1

• S.u.S.E. html2ps-1.0b3-458.i586.rpm
  ftp://ftp.suse.com/pub/suse/i386/update/8.1/rpm/i586/html2ps-1.0b3-458 .i586.rpm


• S.u.S.E. lpdfilter-0.43-63.i586.rpm
  ftp://ftp.suse.com/pub/suse/i386/update/8.1/rpm/i586/lpdfilter-0.43-63 .i586.rpm


• S.u.S.E. html2ps-1.0b3-458.src.rpm
  ftp://ftp.suse.com/pub/suse/i386/update/8.1/rpm/src/html2ps-1.0b3-458. src.rpm


• S.u.S.E. lpdfilter-0.43-63.src.rpm
  ftp://ftp.suse.com/pub/suse/i386/update/8.1/rpm/src/lpdfilter-0.43-63. src.rpm