It's been reported that there are several vulnerabilities in the IRIX
o lpd chkhost() routine is easily spoofed
o lpd should execl() sendmail -t, not sendmail
o Unstable behavior in lpd resulting from the patch4835 fixes
o lprm buffer overrun
SGI has investigated the issue and recommends the following steps for
neutralizing the exposure. It is HIGHLY RECOMMENDED that these
implemented on ALL vulnerable SGI systems.
These issues have been corrected with patches and in future releases of
Not sure if it's installed?
To see if the bsdlpr subsystem is installed, execute the following
$ versions print.sw.bsdlpr
I = Installed, R = Removed
Name Date Description
I print 01/30/2003 Printing Tools, Release
I print.sw 01/30/2003 Printing Tools Software
I print.sw.bsdlpr 01/30/2003 Berkeley 'lpr' Printer Spooler
If the output shown is similar to the above, then the subsystem is
and the system may be vulnerable.