PRIOn knowledge basePRION:CVE-2008-2908

HistoryJun 30, 2008 - 6:24 p.m.

Stack overflow

2008-06-3018:24:00

PRIOn knowledge base

www.prio-n.com

8.2 High

AI Score

Confidence

Low

0.41 Medium

EPSS

Percentile

97.3%

JSON

Multiple stack-based buffer overflows in a certain ActiveX control in ienipp.ocx in Novell iPrint Client for Windows before 4.36 allow remote attackers to execute arbitrary code via a long value of the (1) operation, (2) printer-url, or (3) target-frame parameter. NOTE: some of these details are obtained from third party information.

CPENameOperatorVersion
iprint_clientle4.35

CPE	Name	Operator	Version
	iprint_client	le	4.35

References

secunia.com/advisories/30709

support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5028061.html

www.kb.cert.org/vuls/id/145313

www.securityfocus.com/bid/29736

www.securitytracker.com/id?1020303

www.vupen.com/english/advisories/2008/1837/references

exchange.xforce.ibmcloud.com/vulnerabilities/43085