[email protected]CVE-2009-1568

HistoryDec 08, 2009 - 11:30 p.m.

CVE-2009-1568

2009-12-0823:30:00

CWE-119

[email protected]

web.nvd.nist.gov

cve-2009-1568

buffer overflow

ienipp.ocx

novell iprint client

remote code execution

nvd

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.8 High

AI Score

Confidence

Low

0.95 High

EPSS

Percentile

99.3%

JSON

Stack-based buffer overflow in ienipp.ocx in Novell iPrint Client 5.30, and possibly other versions before 5.32, allows remote attackers to execute arbitrary code via a long target-frame parameter.

Affected configurations

NVD

Node

novelliprint_clientMatch5.30

novelliprint_clientMatch5.31

CPENameOperatorVersion
novell:iprint_clientnovell iprint clienteq5.30
novell:iprint_clientnovell iprint clienteq5.31

CPE	Name	Operator	Version
novell:iprint_client	novell iprint client	eq	5.30
novell:iprint_client	novell iprint client	eq	5.31

References

download.novell.com/Download?buildid=29T3EFRky18~

secunia.com/advisories/37169

secunia.com/secunia_research/2009-40/

www.securityfocus.com/archive/1/508289/100/0/threaded

www.securityfocus.com/bid/37242

www.vupen.com/english/advisories/2009/3429

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.8 High

AI Score

Confidence

Low

0.95 High

EPSS

Percentile

99.3%

JSON

Related for CVE-2009-1568

saint4 packetstorm2 checkpoint_advisories2 cvelist1 securityvulns2 nvd1 prion1 seebug1 openvas4 nessus2