print software vulnerabilities
vulnerabilities.aspcode.net
Searching print software vulnerabilities
finger 0@host on some systems may print informa
information
|
accounts
|
systems
|
0@host
|
finger
|
print
|
user
|
some
|
may
|
finger 0@host on some systems may print information on some user accounts.
An attacker can force a printer to print arbitr
arbitrary
|
documents
|
attacker
|
printer
|
force
|
print
|
can
|
An attacker can force a printer to print arbitrary documents (e.g. if the printer doesn't require a password) or to become disabled.
rxvt, when compiled with the PRINT_PIPE option
-print-pipe
|
PRINT_PIPE
|
specifying
|
privileges
|
including
|
Slackware
|
malicious
|
operating
|
parameter
|
compiled
|
various
|
program
|
command
|
systems
|
option
|
allows
|
RedHat
|
using
|
local
|
Linux
|
users
|
line
|
rxvt
|
gain
|
root
|
rxvt, when compiled with the PRINT_PIPE option in various Linux operating systems including Linux Slackware 3.0 and RedHat 2.1, allows local users to gain root privileges by specifying a malicious program using the -print-pipe command line parameter.
Vulnerability in sgihelp in the SGI help system
Vulnerability
|
privileges
|
possibly
|
manager
|
earlier
|
command
|
sgihelp
|
through
|
clogin
|
allows
|
system
|
print
|
local
|
users
|
help
|
gain
|
root
|
IRIX
|
SGI
|
Vulnerability in sgihelp in the SGI help system and print manager in IRIX 5.2 and earlier allows local users to gain root privileges, possibly through the clogin command.
The dccscan setuid program in LPPlus does not p
permissions
|
specified
|
arbitrary
|
properly
|
program
|
dccscan
|
setuid
|
allows
|
LPPlus
|
which
|
print
|
files
|
users
|
local
|
check
|
does
|
user
|
file
|
not
|
has
|
The dccscan setuid program in LPPlus does not properly check if the user has the permissions to print the file that is specified to dccscan, which allows local users to print arbitrary files.
Buffer overflow in CDE Print Viewer (dtprintinf
overflow
|
Viewer
|
Buffer
|
Print
|
CDE
|
Buffer overflow in CDE Print Viewer (dtprintinfo) allows local users to execute arbitrary code by copying text from the clipboard into the Help window.
The default configuration of LPRng print spoole
configuration
|
operating
|
arbitrary
|
Mandrake
|
through
|
accepts
|
systems
|
default
|
spooler
|
remote
|
hosts
|
LPRng
|
print
|
Linux
|
other
|
jobs
|
Hat
|
Red
|
The default configuration of LPRng print spooler in Red Hat Linux 7.0 through 7.3, Mandrake 8.1 and 8.2, and other operating systems, accepts print jobs from arbitrary remote hosts.
The web server for D-Link DP-300 print server a
attackers
|
service
|
allows
|
remote
|
denial
|
D-Link
|
server
|
DP-300
|
print
|
cause
|
web
|
The web server for D-Link DP-300 print server allows remote attackers to cause a denial of service (hang) via a large HTTP POST request.
The default configuration of Xerox DocuTech 611
configuration
|
DocuTech
|
default
|
Xerox
|
The default configuration of Xerox DocuTech 6110 and DocuTech 6115 allows remote attackers to connect to the web server and (1) submit print jobs directly into the "print now" queue or (2) read the scanner job history.
The L2TP protocol parser in tcpdump 3.8.1 and e
protocol
|
tcpdump
|
parser
|
L2TP
|
The L2TP protocol parser in tcpdump 3.8.1 and earlier allows remote attackers to cause a denial of service (infinite loop and memory consumption) via a packet with invalid data to UDP port 1701, which causes l2tp_avp_print to use a bad length value when calling print_octets.
Unknown vulnerability in CDE Print Viewer (dtpr
vulnerability
|
Unknown
|
Viewer
|
Print
|
CDE
|
Unknown vulnerability in CDE Print Viewer (dtprintinfo) for Sun Solaris 2.6 through 9 may allow local users to execute arbitrary code.
Help in NIPrint LPD-LPR Print Server 4.10 and e
LPD-LPR
|
NIPrint
|
Server
|
Print
|
Help
|
Help in NIPrint LPD-LPR Print Server 4.10 and earlier executes Windows Explorer with SYSTEM privileges, which allows local users to gain privileges.
The print_attr_string function in print-radius.
print_attr_string
|
print-radiusc
|
function
|
tcpdump
|
The print_attr_string function in print-radius.c for tcpdump 3.8.1 and earlier allows remote attackers to cause a denial of service (segmentation fault) via a RADIUS attribute with a large length value.
The print-from-email feature in the Canon Image
print-from-email
|
ImageRUNNER
|
feature
|
Canon
|
The print-from-email feature in the Canon ImageRUNNER (iR) 5000i and C3200 digital printer, when not using IP address range filtering, allows remote attackers to print arbitrary text without authentication via a text/plain email to TCP port 25.
The isis_print function, as called by isoclns_p
isoclns_print
|
isis_print
|
function
|
tcpdump
|
called
|
The isis_print function, as called by isoclns_print, in tcpdump 3.9.1 and earlier allows remote attackers to cause a denial of service (infinite loop) via a zero length, as demonstrated using a GRE packet.
easymsgb.pl in Easy Message Board allows remote
metacharacters
|
easymsgbpl
|
arbitrary
|
attackers
|
parameter
|
commands
|
execute
|
Message
|
allows
|
remote
|
shell
|
Board
|
print
|
Easy
|
via
|
easymsgb.pl in Easy Message Board allows remote attackers to execute arbitrary commands via shell metacharacters in the print parameter.
Multiple cross-site scripting (XSS) vulnerabili
cross-site
|
scripting
|
Multiple
|
Multiple cross-site scripting (XSS) vulnerabilities in MAXdev MD-Pro 1.0.73, and possibly earlier versions, allow remote attackers to inject arbitrary web script or HTML via (1) the print parameter to the print module, the sitename parameter to (2) bb_smilies or (3) bbcode_ref module, or (4) the hlpfile parameter to openwindow.php.
SQL injection vulnerability in Hitachi EUR Prof
vulnerability
|
authenticated
|
Professional
|
injection
|
arbitrary
|
commands
|
Service
|
unknown
|
vectors
|
Edition
|
Hitachi
|
execute
|
remote
|
attack
|
Viewer
|
allows
|
Print
|
users
|
via
|
SQL
|
EUR
|
ILF
|
SQL injection vulnerability in Hitachi EUR Professional Edition, EUR Viewer, EUR Print Service, and EUR Print Service for ILF allows remote authenticated users to execute arbitrary SQL commands via unknown attack vectors.
Multiple PHP remote file inclusion vulnerabilit
vulnerabilities
|
attackers
|
inclusion
|
arbitrary
|
Multiple
|
execute
|
Kampus
|
remote
|
Sisfo
|
allow
|
code
|
file
|
URL
|
via
|
PHP
|
Multiple PHP remote file inclusion vulnerabilities in Sisfo Kampus 0.8 allow remote attackers to execute arbitrary PHP code via a URL in the (1) exec parameter to index.php or (2) print parameter to print.php, which is also accessible via the print command to index.php.
Buffer overflow in the Novell Distributed Print
Distributed
|
overflow
|
Services
|
Buffer
|
Novell
|
Print
|
Buffer overflow in the Novell Distributed Print Services (NDPS) Print Provider for Windows component (NDPPNT.DLL) in Novell Client 4.91 has unknown impact and remote attack vectors.
Software vulnerabilities results 1 to 20 of 93
Page:
1
2
3
4
5
►