CVE-2010-1527

Stack-based buffer overflow in Novell iPrint Client before 5.44 allows remote attackers to execute arbitrary code via a long call-back-url parameter in an op-client-interface-version action...

DSquare Exploit Pack: D2SEC_IPRINT4

Name| d2seciprint4 ---|--- CVE| CVE-2010-1527 Exploit Pack| D2ExploitPack Description| Novell iPrint Client ienipp.ocx ActiveX Stack Overflow Notes|...

Stack overflow

Stack-based buffer overflow in Novell iPrint Client before 5.44 allows remote attackers to execute arbitrary code via a long call-back-url parameter in an op-client-interface-version action...

Memory corruption

The ienipp.ocx ActiveX control in the browser plugin in Novell iPrint Client before 5.42 does not properly validate the debug parameter, which allows remote attackers to execute arbitrary code or cause a denial of service stack memory corruption via a parameter value with a crafted length, relate...

Design/Logic Flaw

The PluginGetDriverFile function in Novell iPrint Client before 5.44 interprets an uninitialized memory location as a pointer value, which allows remote attackers to execute arbitrary code via unspecified vectors. NOTE: the provenance of this information is unknown; the details are obtained solel...

Buffer overflow

Buffer overflow in the browser plugin in Novell iPrint Client before 5.42 allows remote attackers to execute arbitrary code by using EMBED elements to pass parameters with long names...

Stack overflow

Stack-based buffer overflow in the browser plugin in Novell iPrint Client before 5.42 allows remote attackers to execute arbitrary code via a long operation parameter...

CVE-2010-3107

CVE-2010-3107 concerns Novell iPrint Client prior to 5.42 where an ActiveX control ienipp.ocx in the browser plugin and the nipplib.dll’s CleanUploadFiles logic flaw allow a remote attacker to trigger recursive file deletion, causing a denial of service. The vulnerability is tied to a lack of pro...

CVE-2010-3106

The ienipp.ocx ActiveX control in the browser plugin in Novell iPrint Client before 5.42 does not properly validate the debug parameter, which allows remote attackers to execute arbitrary code or cause a denial of service stack memory corruption via a parameter value with a crafted length, relate...

CVE-2010-1527

Stack-based buffer overflow in Novell iPrint Client before 5.44 allows remote attackers to execute arbitrary code via a long call-back-url parameter in an op-client-interface-version action...

CVE-2010-1527

Summary (CVE-2010-1527): A stack-based buffer overflow in Novell iPrint Client (ienipp.ocx) allows remote code execution via an overly long call-back-url parameter in the op-client-interface-version action. Affected product: Novell iPrint Client ActiveX/Browser Plugin; vulnerable component/file: ...

CVE-2010-3105

The PluginGetDriverFile function in Novell iPrint Client before 5.44 interprets an uninitialized memory location as a pointer value, which allows remote attackers to execute arbitrary code via unspecified vectors. NOTE: the provenance of this information is unknown; the details are obtained solel...

CVE-2010-3107

A certain ActiveX control in ienipp.ocx in the browser plugin in Novell iPrint Client before 5.42 does not properly restrict the set of files to be deleted, which allows remote attackers to cause a denial of service recursive file deletion via unspecified vectors related to a "logic flaw" in the...

CVE-2010-3105

The CVE-2010-3105 entry concerns Novell iPrint Client before 5.44, where PluginGetDriverFile may interpret an uninitialized memory location as a pointer, enabling remote code execution via unspecified vectors. Multiple connected sources (OpenVAS NASL, Nessus entries, NVD description) corroborate:...

CVE-2010-3109

CVE-2010-3109 describes a stack-based buffer overflow in the browser plugin of Novell iPrint Client prior to 5.42, triggered by a long operation parameter. The vulnerable component is the iPrint Client’s browser plugin (likely related to nipplib.dll), and the root cause is a stack-based overflow ...

CVE-2010-3108

CVE-2010-3108 affects Novell iPrint Client prior to 5.42 and arises from a buffer overflow in the browser plugin when handling EMBED parameters with long names, enabling remote code execution. The issue is documented as a vulnerability in the iPrint Client (before version 5.42) with a CVSS v2 bas...

CVE-2010-3108

Buffer overflow in the browser plugin in Novell iPrint Client before 5.42 allows remote attackers to execute arbitrary code by using EMBED elements to pass parameters with long names...

CVE-2010-3109

Stack-based buffer overflow in the browser plugin in Novell iPrint Client before 5.42 allows remote attackers to execute arbitrary code via a long operation parameter...

CVE-2010-3106

CVE-2010-3106 affects the ienipp.ocx ActiveX control in the browser plugin of Novell iPrint Client prior to version 5.42. The vulnerability arises from improper validation of the debug parameter, allowing a crafted length to trigger a stack memory corruption that can lead to remote code execution...

Novell iPrint Client < 5.44 Multiple Vulnerabilities

Novell iPrint Client version older than 5.44 is installed on the remote host. Such versions are reportedly affected by multiple remote code execution vulnerabilities: - A buffer overflow was discovered in how iPrint client handles the 'call-back-url' parameter value for a...