ESCPUtil 1.15.2 2 - Printer Name Local Buffer Overflow

EDB-ID:

22190

CVE:

N/A


Platform:

Linux

Published:

2003-01-21

source: http://www.securityfocus.com/bid/6658/info

It has been reported that a buffer overflow in escputil exists. When supplied with excessively long arguments, it is possible to overwrite stack memory.

escputil is reportedly installed setgid 'sys' on Mandrake Linux, so it is possible that this issue may be exploited to execute arbitrary code with elevated privileges. Other distributions may also be affected if the utility is installed or runs with elevated privileges.

https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/22190.tar.gz