CVE-1999-0952 - Nilotic Range Description Buffer overflow in Solaris lpstat via class argument allows local users to gain root access. Reference http://marc.info/?l=bugtraq&m=91759216618637&w=2