Solaris lpstat Buffer Overflow Vulnerability

info
discussion
exploit
solution
references

Solaris lpstat Buffer Overflow Vulnerability

The lpstat utility is used to display the contents of the print queue. It has been reported that the version of lpstat shipped with Sun Solaris is vulnerable to a locally exploitable buffer overflow. As lpstat for Solaris is configured setuid root, exploitation of this vulnerability could result in elevation of privileges for a local attacker.