CVE-2000-1208 — Vulnetix

Try Vulnetix Request Demo

CVE-2000-1208 PUBLISHED CVSS 7.199999809265137 HIGH

Format string vulnerability in startprinting() function of printjob.c in BSD-based lpr lpd package may allow local users to gain privileges via an improper syslog call that uses format strings from the checkremote() call.

EPSS 0.05% · 14.4th percentile

Risk Scores

CVSS v2.0

7.199999809265137

EPSS Score

0.05%

14.4th percentile

Affected Products

Vendor	Product	Versions
openbsd	openbsd	2.7
n/a	n/a	n/a
immunix	immunix	6.2
netbsd	netbsd	1.4.1, 1.4, 1.4.2
redhat	linux	7.0

Timeline

Aug 1, 2002 CVE Published
Feb 4, 2022 EPSS Score
Mar 28, 2022 EPSS Score
May 19, 2022 EPSS Score
Jul 10, 2022 EPSS Score
Sep 1, 2022 EPSS Score
Oct 23, 2022 EPSS Score
Dec 14, 2022 EPSS Score
Feb 4, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Mar 28, 2023 EPSS Score
May 19, 2023 EPSS Score

References

20000925 Format strings: bug #1: BSD-lpr mailing-list
lpr-checkremote-format-string(5286) vdb
1711 vdb
20001004 Immunix OS Security Update for lpr mailing-list
RHSA-2000:066 vendor-advisory
https://nvd.nist.gov/vuln/detail/CVE-2000-1208 advisory

Open in Interactive Console →