COMMAND

    lp Subsystem

SYSTEMS AFFECTED

    All versions of IRIX up to 4.0.5.
    It is NOT present in any version of the Trusted IRIX/B product.

PROBLEM

    When IRIX pre-4.0.5 systems are installed or updated using  either
    the basic system software  ("eoe1.sw.unix") or the system  manager
    software ("eoe2.sw.vadmin") media,  a vulnerability is  introduced
    in the lp software.

    Any user logged into the system can gain root access.

SOLUTION

    As root, execute the following commands:

        # cd /usr/lib
        # chmod a-s,go-w lpshut lpmove accept reject lpadmin
        # chmod go-ws lpsched vadmin/serial_ports vadmin/users vadmin/disks
        # cd /usr/bin
        # chmod a-s,go-w disable enable
        # chmod go-ws cancel lp lpstat

    If the eoe2.sw.vadmin software is not installed, you may
    ignore any warning messages from chmod such as:

        "chmod: WARNING: can't access vadmin/serial_ports"

    If  system  software  should  ever  be  reinstalled from pre-4.0.5
    media or restored from a backup tape created before the patch  was
    applied,  repeat  the  above  procedure  before enabling logins by
    normal users.