TCP_EXPLOIT LPD dvips remote command execution attempt

 

Code: p464

Severity: Warning

 

Description: This event is generated when an attempt is made to exploit a known vulnerability in dvips on some RedHat Linux systems.

Impact: Execution of commands with the privileges of the lp daemon.

Corrective: Upgrade to the latest non-affected version of the software. Ensure that dvips is executed in safe mode by the lp daemon by specifying the use of the -R flag in the dvi-to-ps.fpi configuration file.