• Treasure@feddit.orgOP
      link
      fedilink
      arrow-up
      2
      ·
      2 months ago

      Yeah, what a disappointment. This guy brought shame to the security community because he was salty that his vulnerability didn’t get the attention it “deserved”.

      • deafboy@lemmy.world
        link
        fedilink
        English
        arrow-up
        1
        ·
        2 months ago

        Disappointment? Only if you mean the person that came up with FoomaticRIP.

        For those who did not read the entire thing, it’s a so called “filter” that converts the document before it’s sent to certain nasty types of printers. Except it’s not executed on the print server. The unauthenticated print server can just ask a client to run it on their side. And it’s designed to be able to execute ANY command.