CVE-2000-1221
IRIX - Unauthenticated Remote Access Bypass via DNS Spoofing
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2000-1221. PoCs published by anonymous.
AI-analyzed exploit summary The provided text describes multiple vulnerabilities in lpd, including hostname spoofing and command execution via sendmail, potentially leading to remote root access. No actual exploit code is present, only a vulnerability description.
Description
The line printer daemon (lpd) in the lpr package in multiple Linux operating systems authenticates by comparing the reverse-resolved hostname of the local machine to the hostname of the print server as returned by gethostname, which allows remote attackers to bypass intended access controls by modifying the DNS for the attacking IP.
Exploits (1)
The provided text describes multiple vulnerabilities in lpd, including hostname spoofing and command execution via sendmail, potentially leading to remote root access. No actual exploit code is present, only a vulnerability description.