CVE-1999-0032 (GCVE-0-1999-0032)
Vulnerability from cvelistv5
Published
1999-09-29 04:00
Modified
2024-08-01 16:27
Severity ?
VLAI Severity ?
EPSS score ?
CWE
- n/a
Summary
Buffer overflow in lpr, as used in BSD-based systems including Linux, allows local users to execute arbitrary code as root via a long -C (classification) command line option.
References
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-01T16:27:57.133Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "19980402-01-PX",
"tags": [
"vendor-advisory",
"x_refsource_SGI",
"x_transferred"
],
"url": "ftp://patches.sgi.com/support/free/security/advisories/19980402-01-PX"
},
{
"name": "707",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/707"
},
{
"name": "I-042",
"tags": [
"third-party-advisory",
"government-resource",
"x_refsource_CIAC",
"x_transferred"
],
"url": "http://www.ciac.org/ciac/bulletins/i-042.shtml"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "1996-08-13T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Buffer overflow in lpr, as used in BSD-based systems including Linux, allows local users to execute arbitrary code as root via a long -C (classification) command line option."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2005-11-02T10:00:00",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "19980402-01-PX",
"tags": [
"vendor-advisory",
"x_refsource_SGI"
],
"url": "ftp://patches.sgi.com/support/free/security/advisories/19980402-01-PX"
},
{
"name": "707",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/707"
},
{
"name": "I-042",
"tags": [
"third-party-advisory",
"government-resource",
"x_refsource_CIAC"
],
"url": "http://www.ciac.org/ciac/bulletins/i-042.shtml"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-1999-0032",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Buffer overflow in lpr, as used in BSD-based systems including Linux, allows local users to execute arbitrary code as root via a long -C (classification) command line option."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "19980402-01-PX",
"refsource": "SGI",
"url": "ftp://patches.sgi.com/support/free/security/advisories/19980402-01-PX"
},
{
"name": "707",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/707"
},
{
"name": "I-042",
"refsource": "CIAC",
"url": "http://www.ciac.org/ciac/bulletins/i-042.shtml"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-1999-0032",
"datePublished": "1999-09-29T04:00:00",
"dateReserved": "1999-06-07T00:00:00",
"dateUpdated": "2024-08-01T16:27:57.133Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-1999-0032\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"1996-10-25T04:00:00.000\",\"lastModified\":\"2025-04-03T01:03:51.193\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Buffer overflow in lpr, as used in BSD-based systems including Linux, allows local users to execute arbitrary code as root via a long -C (classification) command line option.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:L/AC:L/Au:N/C:C/I:C/A:C\",\"baseScore\":7.2,\"accessVector\":\"LOCAL\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"COMPLETE\",\"integrityImpact\":\"COMPLETE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":3.9,\"impactScore\":10.0,\"acInsufInfo\":false,\"obtainAllPrivilege\":true,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-Other\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:sgi:irix:5.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D792E16B-A1AB-4BCE-9E6E-88C17D4F57CA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:sgi:irix:5.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"30F950B1-7D5F-4CA9-BBEF-E6DB1A28C156\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:sgi:irix:5.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"333103D5-71B8-4DC1-90F7-15F2841955D6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:sgi:irix:5.1.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8A889C10-0637-4133-AFBD-533C8397BE89\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:sgi:irix:5.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E292DA15-91BF-4957-9C0F-A69518538BED\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:sgi:irix:5.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"26144F94-63FD-4907-B548-09B68C2FC9B3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:sgi:irix:6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"26309EFA-0991-46B6-9818-F0FBB902D5F5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:sgi:irix:6.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B6A81ED6-CE92-4C10-AA2B-AB9AF573D120\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:sgi:irix:6.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"966C1A13-8007-408D-96BE-0DA3BB6CA401\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:sgi:irix:6.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0ECE564D-B4BB-4C05-88CC-CDC3F8E4E366\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:sgi:irix:6.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B2D59247-56FA-46B4-BB51-2DAE71AFC145\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:sgi:irix:6.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"15BE08F8-5F3F-45DB-BFE0-1F6F2F57A4D4\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:bsdi:bsd_os:2.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"766851E2-134A-4A89-931B-6F1753525684\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:freebsd:freebsd:2.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F1F098C1-D09E-49B4-9B51-E84B6C4EA6CD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:freebsd:freebsd:2.0.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"34797660-41F5-4358-B70F-2A40DE48F182\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:freebsd:freebsd:2.1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"27C9E23D-AB82-4AE1-873E-C5493BB96AA1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:freebsd:freebsd:2.1.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4054D69F-596F-4EB4-BE9A-E2478343F55A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:next:nextstep:4.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1FEE8CF7-908D-4E24-A2BA-B58BF4031C9E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:next:nextstep:4.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C1EBBE68-C1F9-4982-A3CE-F10E22A9EEC0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:sun:sunos:4.1.3u1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FD1BA107-F2D3-4F13-82EC-4576C429E3C1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:sun:sunos:4.1.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1070749A-65E9-439A-A7CC-3CE529A5D5E7\"}]}]}],\"references\":[{\"url\":\"ftp://patches.sgi.com/support/free/security/advisories/19980402-01-PX\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.ciac.org/ciac/bulletins/i-042.shtml\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/bid/707\",\"source\":\"cve@mitre.org\"},{\"url\":\"ftp://patches.sgi.com/support/free/security/advisories/19980402-01-PX\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.ciac.org/ciac/bulletins/i-042.shtml\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/707\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…
Loading…