Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
saintSAINT CorporationSAINT:F7DC7D2BABDEE6E6FF49445CB919975C
HistoryAug 25, 2010 - 12:00 a.m.

Novell iPrint Client ActiveX control call-back-url buffer overflow

2010-08-2500:00:00
SAINT Corporation
www.saintcorporation.com
19

EPSS

0.946

Percentile

99.3%

JSON

Added: 08/25/2010
CVE: CVE-2010-1527
BID: 42576

Background

Novell iPrint is an application which allows users to install and manage printers. Novell iPrint installs the Novell iPrint Control ActiveX control named **ienipp.ocx**.

Problem

A buffer overflow vulnerability allows command execution when a user loads a web page which invokes the Novell iPrint Client ActiveX Control with a long, specially crafted call-back-url parameter.

Resolution

Upgrade to Novell iPrint Client 5.44.

References

<http://www.novell.com/support/viewContent.do?externalId=7006679&gt;
<http://secunia.com/secunia_research/2010-104/&gt;

Limitations

Exploit works on Novell iPrint Client 5.42 and requires a user to open the exploit page in Internet Explorer 6 or 7.

Platforms

Windows

Related

saint 3
prion 1
packetstorm 2
seebug 3
nvd 1
exploitpack 2
d2 1
exploitdb 3
checkpoint_advisories 1
cvelist 1
metasploit 1
zdt 2
cve 1
nessus 1
openvas 2
saint
saint
Novell iPrint Client ActiveX control call-back-url buffer overflow
2010-08-25 00:00:00
Novell iPrint Client ActiveX control call-back-url buffer overflow
2010-08-25 00:00:00
Novell iPrint Client ActiveX control call-back-url buffer overflow
2010-08-25 00:00:00
prion
prion
Stack overflow
2010-08-23 22:00:00
packetstorm
packetstorm
Novell iPrint Client ActiveX Control call-back-url Buffer Overflow
2010-09-21 00:00:00
Month Of Abysssec Undisclosed Bugs - Novell iPrint Client Browser
2010-09-21 00:00:00
seebug
seebug
Novell iPrint Client ActiveX Control call-back-url Buffer Overflow Exploit (meta)
2014-07-01 00:00:00
Novell iPrint Client ActiveX Control call-back-url Buffer Overflow
2014-07-01 00:00:00
Novell iPrint Client Browser Plugin - call-back-url Stack Overflow
2014-07-01 00:00:00
nvd
nvd
CVE-2010-1527
2010-08-23 22:00:02
exploitpack
exploitpack
Novell iPrint Client - ActiveX Control call-back-url Buffer Overflow (Metasploit)
2010-09-21 00:00:00
Novell iPrint Client Browser Plugin - call-back-url Remote Stack Overflow
2010-09-19 00:00:00
d2
d2
DSquare Exploit Pack: D2SEC_IPRINT4
2010-08-23 22:00:00
exploitdb
exploitdb
Novell iPrint Client Browser Plugin - &#039;call-back-url&#039; Remote Stack Overflow
2010-09-19 00:00:00
Novell iPrint Client ActiveX Control call-back-url Buffer Overflow
2010-09-21 00:00:00
Novell iPrint Client - ActiveX Control call-back-url Buffer Overflow (Metasploit)
2010-09-21 00:00:00
checkpoint_advisories
checkpoint_advisories
Novell iPrint Client Browser Plugin call-back-url Buffer Overflow (CVE-2010-1527)
2010-08-29 00:00:00
cvelist
cvelist
CVE-2010-1527
2010-08-23 20:00:00
metasploit
metasploit
Novell iPrint Client ActiveX Control call-back-url Buffer Overflow
2010-09-21 18:46:29
zdt
zdt
Novell iPrint Client Browser Plugin call-back-url Stack Overflow
2010-09-20 00:00:00
Novell iPrint Client ActiveX Control call-back-url Buffer Overflow
2010-09-22 00:00:00
cve
cve
CVE-2010-1527
2010-08-23 22:00:02
nessus
nessus
Novell iPrint Client < 5.44 Multiple Vulnerabilities
2010-08-23 00:00:00
openvas
openvas
Novell iPrint Client Multiple Vulnerabilities (windows)
2010-08-30 00:00:00
Novell iPrint Client Multiple Vulnerabilities - Windows
2010-08-30 00:00:00

EPSS

0.946

Percentile

99.3%

JSON
Related for SAINT:F7DC7D2BABDEE6E6FF49445CB919975C
saint3prion1packetstorm2seebug3nvd1exploitpack2d21exploitdb3checkpoint_advisories1cvelist1metasploit1zdt2cve1nessus1openvas2