CVE-2000-1221

IRIX - Unauthenticated Remote Access Bypass via DNS Spoofing

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2000-1221. PoCs published by anonymous.

AI-analyzed exploit summary The provided text describes multiple vulnerabilities in lpd, including hostname spoofing and command execution via sendmail, potentially leading to remote root access. No actual exploit code is present, only a vulnerability description.

Description

The line printer daemon (lpd) in the lpr package in multiple Linux operating systems authenticates by comparing the reverse-resolved hostname of the local machine to the hostname of the print server as returned by gethostname, which allows remote attackers to bypass intended access controls by modifying the DNS for the attacking IP.

Exploits (1)

exploitdb WRITEUP VERIFIED
by anonymous · textremoteunix
https://www.exploit-db.com/exploits/19722

The provided text describes multiple vulnerabilities in lpd, including hostname spoofing and command execution via sendmail, potentially leading to remote root access. No actual exploit code is present, only a vulnerability description.

Classification
Writeup 90%
Attack Type
Auth Bypass | Rce | Lpe
Complexity
Moderate
Reliability
Theoretical
Target: lpd (various Linux/Unix distributions)
No auth needed
Prerequisites: Network access to lpd service · Local user access for sendmail exploitation
mistral-large-3 · analyzed Feb 16, 2026 Full analysis →

References (8)

Core 8
Core References
Vendor Advisory vendor-advisory x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2000-002.html
Patch vendor-advisory x_refsource_debian
http://www.debian.org/security/2000/20000109
Various Sources vendor-advisory x_refsource_atstake
http://www.atstake.com/research/advisories/2000/lpd_advisory.txt
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/927
US Government Resource third-party-advisory x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/30308
Various Sources vendor-advisory x_refsource_l0pht
http://www.l0pht.com/advisories/lpd_advisory
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/3840

Scores

EPSS 0.1673
EPSS Percentile 96.7%

Details

Status published
Products (31)
debian/debian_linux 2.1
redhat/linux 4.1
redhat/linux 4.2
redhat/linux 5.0
redhat/linux 5.2
redhat/linux 6.0
redhat/linux 6.1
sgi/irix 6.5
sgi/irix 6.5.1
sgi/irix 6.5.2
... and 21 more
Published Jan 08, 2000
Tracked Since Feb 18, 2026