CVE-1999-1102

CVE Database · CVE-1999-1102

CVE-1999-1102

· N/AModified

CVSS v3.1

N/A

EPSS

0.44%

Published

Dec 31, 1999

Modified

Apr 15, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

lpr on SunOS 4.1.1, BSD 4.3, A/UX 2.0.1, and other BSD-based operating systems allows local users to create or overwrite arbitrary files via a symlink attack that is triggered after invoking lpr 1000 times.

Affected Products (4)

sgi · irixvulnerable

apple · a_uxvulnerable

bsd · bsdvulnerable

sun · sunosvulnerable

References (6)

http://ciac.llnl.gov/ciac/bulletins/e-25.shtml

PatchVendor Advisory

http://www.aenigma.net/resources/maillist/bugtraq/1994/0091.htm

http://www.phreak.org/archives/security/8lgm/8lgm.lpr

ExploitVendor Advisory

http://ciac.llnl.gov/ciac/bulletins/e-25.shtml

PatchVendor Advisory

http://www.aenigma.net/resources/maillist/bugtraq/1994/0091.htm

http://www.phreak.org/archives/security/8lgm/8lgm.lpr

ExploitVendor Advisory

KEV Catalog EPSS Scores Vendors All CVEs