Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
saintSAINT CorporationSAINT:61A04936EFE74890E278567C3FBE828C
HistoryJan 28, 2010 - 12:00 a.m.

Novell iPrint Client ienipp.ocx persistence parameter parsing buffer overflow

2010-01-2800:00:00
SAINT Corporation
download.saintcorporation.com
6

0.956 High

EPSS

Percentile

99.4%

JSON

Added: 01/28/2010
CVE: CVE-2009-1569
BID: 37242
OSVDB: 60804

Background

Novell iPrint is an application which allows users to install and manage printers. Novell iPrint installs the Novell iPrint Control ActiveX control named **ienipp.ocx**.

Problem

A buffer overflow in **ienipp.ocx** allows command execution when a user opens a specially crafted page which invokes the Novell iPrint Client ActiveX control with a specially crafted **persistence** parameter for **volatile-date-time**.

Resolution

Upgrade to iPrint Client version 5.3.2 or higher.

References

<http://secunia.com/secunia_research/2009-44/&gt;

Limitations

Exploit works on Novell iPrint Client 5.30.00 and requires a user to open the exploit page in Internet Explorer 6 or 7.

Platforms

Windows

Related

checkpoint_advisories 2
prion 1
securityvulns 2
packetstorm 1
cvelist 1
saint 3
d2 1
cve 1
nessus 2
openvas 4
seebug 1
checkpoint_advisories
checkpoint_advisories
Novell iPrint Client ienipp.ocx volatile-date-time Parsing Buffer Overflow (CVE-2009-1569)
2010-01-31 00:00:00
Update Protection against Novell iPrint Client ienipp.ocx volatile-date-time Parsing Buffer Overflow
2010-04-23 00:00:00
prion
prion
Stack overflow
2009-12-08 23:30:00
securityvulns
securityvulns
Secunia Research: Novell iPrint Client Date/Time Parsing Buffer Overflow
2009-12-08 00:00:00
Novell iPrint Client multiple security vulnerabilities
2009-12-08 00:00:00
packetstorm
packetstorm
Novell iPrint Client ActiveX Control Date/Time Buffer Overflow
2010-02-06 00:00:00
cvelist
cvelist
CVE-2009-1569
2009-12-08 23:00:00
saint
saint
Novell iPrint Client ienipp.ocx persistence parameter parsing buffer overflow
2010-01-28 00:00:00
Novell iPrint Client ienipp.ocx persistence parameter parsing buffer overflow
2010-01-28 00:00:00
Novell iPrint Client ienipp.ocx persistence parameter parsing buffer overflow
2010-01-28 00:00:00
d2
d2
DSquare Exploit Pack: D2SEC_IPRINT3
2009-12-08 23:30:00
cve
cve
CVE-2009-1569
2009-12-08 23:30:00
nessus
nessus
Novell iPrint Client < 5.32 Multiple Overflows
2009-12-08 00:00:00
Novell iPrint Client < 5.32 Multiple Buffer Overflow Vulnerabilities
2009-12-09 00:00:00
openvas
openvas
Novell iPrint Client Multiple BOF Vulnerabilities - Linux
2009-12-21 00:00:00
Novell iPrint Client Multiple BOF Vulnerabilities (Windows)
2009-12-21 00:00:00
Novell iPrint Client Multiple BOF Vulnerabilities - Windows
2009-12-21 00:00:00
seebug
seebug
Novell iPrint客户端多个栈溢出漏洞
2009-12-14 00:00:00

0.956 High

EPSS

Percentile

99.4%

JSON
Related for SAINT:61A04936EFE74890E278567C3FBE828C
checkpoint_advisories2prion1securityvulns2packetstorm1cvelist1saint3d21cve1nessus2openvas4seebug1