Red Hat Security Advisory 2011-1196-01 - Updated system-config-printer packages that fix one security issue are now available for Red Hat Enterprise Linux 4 and 5. system-config-printer is a print queue configuration tool with a graphical user interface. It was found that system-config-printer did not properly sanitize NetBIOS and workgroup names when searching for network printers. A remote attacker could use this flaw to execute arbitrary code with the privileges of the user running system-config-printer. All users of system-config-printer are advised to upgrade to these updated packages, which contain a backported patch to resolve this issue. Running instances of system-config-printer must be restarted for this update to take effect.
b09b720a95fb3cf2be45b8d6a86bb67bcd41aceb22960a30aa54b9aa88ca8f10