Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
openvasCopyright (C) 2008 Greenbone AGOPENVAS:1361412562310800070
HistoryNov 27, 2008 - 12:00 a.m.

Novell iPrint ActiveX control Stack-based BOF Vulnerability

2008-11-2700:00:00
Copyright (C) 2008 Greenbone AG
plugins.openvas.org
7

7.1 High

AI Score

Confidence

Low

0.046 Low

EPSS

Percentile

92.5%

JSON

Novell iPrint is prone to a stack based buffer overflow vulnerability.

# SPDX-FileCopyrightText: 2008 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.800070");
  script_version("2023-07-28T05:05:23+0000");
  script_tag(name:"last_modification", value:"2023-07-28 05:05:23 +0000 (Fri, 28 Jul 2023)");
  script_tag(name:"creation_date", value:"2008-11-27 14:04:10 +0100 (Thu, 27 Nov 2008)");
  script_tag(name:"cvss_base", value:"9.3");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:M/Au:N/C:C/I:C/A:C");
  script_cve_id("CVE-2008-5231");
  script_name("Novell iPrint ActiveX control Stack-based BOF Vulnerability");

  script_category(ACT_GATHER_INFO);
  script_tag(name:"qod_type", value:"registry");
  script_copyright("Copyright (C) 2008 Greenbone AG");
  script_family("Buffer overflow");
  script_dependencies("smb_reg_service_pack.nasl");
  script_mandatory_keys("SMB/WindowsVersion");
  script_require_ports(139, 445);
  script_tag(name:"impact", value:"Successful attack could lead to execution of arbitrary code via a long target
  frame option value, which crashes the browser and may allow code execution.");
  script_tag(name:"affected", value:"Novell iPrint Client version 5.06 and prior on Windows.");
  script_tag(name:"insight", value:"The issue is due to the improper handling of user requests sent to the
  ExecuteRequest method in ienipp.ocx file.");
  script_tag(name:"solution_type", value:"VendorFix");
  script_tag(name:"solution", value:"Novell iPrint Client version 5.06 is obsoleted, Upgrade to
  Novell iPrint Client version higher than 5.06.");
  script_tag(name:"summary", value:"Novell iPrint is prone to a stack based buffer overflow vulnerability.");

  exit(0);
}


include("smb_nt.inc");
include("version_func.inc");

if(!get_kb_item("SMB/WindowsVersion")){
  exit(0);
}

iPrintVer = registry_get_sz(key:"SOFTWARE\Novell-iPrint",
                            item:"Current Version");
if(!iPrintVer){
  exit(0);
}

novVer = eregmatch(pattern:"v([0-9.]+)", string:iPrintVer);
if(novVer[1] != NULL)
{
  if(version_is_less_equal(version:novVer[1], test_version:"5.06")){
    report = report_fixed_ver(installed_version:novVer[1], vulnerable_range:"Less than or equal to 5.06");
    security_message(port: 0, data: report);
  }
}

Related

openvas 1
prion 1
cve 1
cvelist 1
nessus 1
openvas
openvas
Novell iPrint ActiveX control Stack-based BOF Vulnerability
2008-11-27 00:00:00
prion
prion
Stack overflow
2008-11-26 01:30:00
cve
cve
CVE-2008-5231
2008-11-26 01:30:00
cvelist
cvelist
CVE-2008-5231
2022-10-03 16:13:54
nessus
nessus
Novell iPrint Client ActiveX Control Multiple Vulnerabilities
2008-08-26 00:00:00

7.1 High

AI Score

Confidence

Low

0.046 Low

EPSS

Percentile

92.5%

JSON
Related for OPENVAS:1361412562310800070
openvas1prion1cve1cvelist1nessus1