• Treasure@feddit.orgOP
    link
    fedilink
    arrow-up
    2
    ·
    1 month ago

    Yeah, what a disappointment. This guy brought shame to the security community because he was salty that his vulnerability didn’t get the attention it “deserved”.

    • deafboy@lemmy.world
      link
      fedilink
      English
      arrow-up
      1
      ·
      1 month ago

      Disappointment? Only if you mean the person that came up with FoomaticRIP.

      For those who did not read the entire thing, it’s a so called “filter” that converts the document before it’s sent to certain nasty types of printers. Except it’s not executed on the print server. The unauthenticated print server can just ask a client to run it on their side. And it’s designed to be able to execute ANY command.