User: Password:
|
|
Subscribe / Log in / New account

system-config-printer: arbitrary code execution

Package(s):system-config-printer CVE #(s):CVE-2011-2899
Created:August 23, 2011 Updated:September 23, 2011
Description: From the Red Hat advisory:

It was found that system-config-printer did not properly sanitize NetBIOS and workgroup names when searching for network printers. A remote attacker could use this flaw to execute arbitrary code with the privileges of the user running system-config-printer.

Alerts:
openSUSE openSUSE-SU-2011:1331-2 system-config-printer 2012-01-16
openSUSE openSUSE-SU-2011:1331-1 system-config-printer 2011-12-16
CentOS CESA-2011:1196 system-config-printer 2011-09-22
CentOS CESA-2011:1196 system-config-printer 2011-08-29
Scientific Linux SL-syst-20110823 system-config-printer 2011-08-23
Red Hat RHSA-2011:1196-01 system-config-printer 2011-08-23

(Log in to post comments)


Copyright © 2018, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds