#######################################################################
Luigi Auriemma
Application: Larson Software Technology Network Print Server
http://www.cgmlarson.com/products/NetworkPrintServer.php
Versions: <= 9.4.2 build 105
Platforms: Windows
Bugs: A] format string in logging
B] license buffer-overflow
The LPD daemon included in Cisco IOS is vulnerable to a remote stack
overflow
Description:
The Line Printer Daemon, which provides print server functionality in
Cisco IOS is vulnerable to a software flaw whereby the length of the
hostname of the router is not checked before being copied into a fixed
size memory buffer. This results in IOS crashing if the hostname is too
long, but could potentially result is arbitrary code execution. However,
the attacker must be able to control the hostname of the router, which
===============
1) Introduction
===============
Xlpd is an LPD (Line Printer Daemon) application for MS Windows platforms. When applying Xlpd, your local PC with a printer becomes a print server where the
print jobs from various remote systems are requested and processed in networked environment.
Xlpd helps you print remote files locally without manually downloading them into your local computer. When you are connected to a remote UNIX/Linux system
Thomas Pollet discovered an integer overflow vulnerability in the PNG
image handling filter in CUPS. This could allow a malicious user to
execute arbitrary code with the privileges of the user running CUPS,
or cause a denial of service by sending a specially crafted PNG image
to the print server (CVE-2008-1722).
The updated packages have been patched to correct this issue.
_______________________________________________________________________
References:
1) Introduction
===============
WinIPDS is a commercial AFP (Advanced function printing) and IPDS
(Intelligent Printer Data Stream) print server for Windows.
#######################################################################
=======
Impact
======
A malicious user might be able to execute arbitrary code with the
privileges of the user running CUPS (usually lp), or cause a Denial of
Service by sending a specially crafted PNG image to the print server.
The vulnerability is exploitable via the network if CUPS is sharing
printers remotely.
Workaround
==========
arbitrary code or DNS rebinding attacks.
Background
==========
CUPS, the Common Unix Printing System, is a full-featured print server.
Affected packages
=================
-------------------------------------------------------------------
