SCO OpenServer lp Buffer Overflow Vulnerability

SCO OpenServer lp Buffer Overflow Vulnerability

SCO OpenServer 5 ships with several suid 'bin' executables used in printer administration and related tasks.

This includes lp, a component used to submit files and relevant information for printing.

'lp' contains a confirmed locally exploitable buffer overflow condition present in the handling of command-line parameters.

If properly exploited, this can yield user 'bin' privileges to the attacker.