This host is installed with WinComLPD Total and is prone to buffer overflow and authentication bypass vulnerabilities.

Successful exploitation could allow execution of arbitrary code or crashing the remote wincomlpd service by simply using negative values like 0x80/0xff for the 8 bit numbers and 0x8000/0xffff for the data blocks. Impact Level: System

No solution or patch was made available for at least one year since disclosure of this vulnerability. Likely none will be provided anymore. General solution options are to upgrade to a newer release, disable respective features, remove the product or replace the product by another one.

The issues are due to, - an error in Line Printer Daemon Service (LPDService.exe), when processing print jobs with an overly long control file on default TCP port 515/13500. - an error in authentication checks in the Line Printer Daemon (LPD).

WinCom LPD Total 3.0.2.623 and prior on Windows.

• http://aluigi.org/adv/wincomalpd-adv.txt
• http://secunia.com/advisories/28763
• http://www.frsirt.com/english/advisories/2008/0410

---

Updated on 2015-03-25