Info

Disclosure

Jul 26, 2001

Discovery

Jun 23, 2001

Dates

Exploit

Jul 26, 2001

Solution

Unknown

Description

groff contains a flaw that may allow a malicious user to execute arbitrary code. The issue is triggered when an attacker uses LPD to pass a specially crafted string to the pic utility included in groff. It is possible that the flaw may allow arbitrary code execution resulting in a loss of integrity.

Classification

Location: Remote / Network Access, Local / Remote, Context Dependent
Attack Type: Input Manipulation
Impact: Loss of Integrity
Exploit: Exploit Public
Disclosure: OSVDB Verified

Solution

Currently, there are no known workarounds or upgrades to correct this issue. However, the Free Software Foundation has released a patch to address this vulnerability.

Products

Free Software Foundation	groff	1.10
		1.11
		1.14
		1.15
		1.16

References

CVE ID: 2001-1022 (see also: NVD)
Bugtraq ID: 3103
CERT VU: 399883
ISS X-Force ID: 6918
Secunia Advisory ID: 7249 7351 7668
Vendor Specific Advisory URL: ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2002-022.txt.asc http://docs.info.apple.com/article.html?artnum=61798
http://search.linuxsecurity.com/advisories/other_advisory-1623.html
http://www.debian.org/security/2001/dsa-072
http://www.debian.org/security/2002/dsa-107
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2001-07/0608.html
Generic Exploit URL: http://www.securityfocus.com/data/vulnerabilities/exploits/pic-lpr-remote.c

Credit

zen-parse -

Direct URL: http://osvdb.org/1914