Unrated severityNVD Advisory· Published Dec 31, 1999· Updated Jun 16, 2026
CVE-1999-1102
CVE-1999-1102
Description
lpr on SunOS 4.1.1, BSD 4.3, A/UX 2.0.1, and other BSD-based operating systems allows local users to create or overwrite arbitrary files via a symlink attack that is triggered after invoking lpr 1000 times.
Affected products
7cpe:2.3:o:apple:a_ux:2.0.1:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:apple:a_ux:2.0.1:*:*:*:*:*:*:*
- (no CPE)range: = 2.0.1
cpe:2.3:o:sun:sunos:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:sun:sunos:*:*:*:*:*:*:*:*range: <=4.1.1
- (no CPE)range: = 4.1.1
- Range: = 4.3
Patches
Vulnerability mechanics
References
3- ciac.llnl.gov/ciac/bulletins/e-25.shtmlnvdPatchVendor Advisory
- www.phreak.org/archives/security/8lgm/8lgm.lprnvdExploitVendor Advisory
- www.aenigma.net/resources/maillist/bugtraq/1994/0091.htmnvd
News mentions
0No linked articles in our index yet.