Title: Network Instruments NIPrint LDP-LPR Privilege Escalation Vulnerability
Severity: MODERATE
Description:
NIPrint LPD-LPR Print Server is a product for the Microsoft Windows operating system designed to allow bi-directional LPD/LPR services using Winsock. The application is developed and maintained by Network Instruments. It has been reported that a flaw in NIPrint can be exploited by malicious local users to gain administrative privileges on affected servers.
NIPrint runs as a service, with SYSTEM privileges, by default. It is accessible to all users locally through an icon in the taskbar. According to the report, the "help" system used by NIPrint can invoke Explorer as SYSTEM. An attacker can, in turn, use Explorer to run commands with administrative privileges.
This vulnerability may be an instance of the general issue described in BID 8884.
Affected Products:
- Network Instruments NIPrint LPD-LPR Print Server 4.10.0
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
