30 matches found
CVE-2011-4187
CVE-2011-4187 affects the Novell iPrint Client on Windows. A stack-based overflow in the GetDriverSettings function of nipplib.dll (in the iPrint Client before 5.78) allows a remote attacker to execute arbitrary code by sending a crafted realm parameter via the iPrint ActiveX control (ienipp.ocx)...
CVE-2012-0411
Summary: CVE-2012-0411 affects Novell iPrint Client (pre-5.82). The root cause is a vulnerability in the op-client-interface-version operation (descriptor in ienipp.ocx per ZDI) where two strings used to build a response URL are copied into a fixed‑length buffer on the stack, causing memory corru...
CVE-2008-2431
The CVE-2008-2431 entry concerns Novell iPrint Client before 5.06, where the ienipp.ocx ActiveX control contains multiple buffer overflow vulnerabilities due to insufficient boundary checking. The issues affect various methods (e.g., GetDriverFile, GetPrinterURLList, GetFileList, GetServerVersion...
CVE-2009-1569
CVE-2009-1569 affects Novell iPrint Client (versions including 4.38 and 5.30; possibly earlier) where a stack buffer overflow in the ActiveX control ienipp.ocx allows remote code execution via specially crafted Date/Time inputs. The vulnerability arises from parsing of Date/Time values, with affe...
CVE-2010-1527
Summary (CVE-2010-1527): A stack-based buffer overflow in Novell iPrint Client (ienipp.ocx) allows remote code execution via an overly long call-back-url parameter in the op-client-interface-version action. Affected product: Novell iPrint Client ActiveX/Browser Plugin; vulnerable component/file: ...
CVE-2011-4185
CVE-2011-4185 affects Novell iPrint Client ActiveX GetPrinterURLList2 prior to 5.78 on Windows, enabling memory corruption that can lead to remote code execution or denial of service. Connected advisories describe memory corruption via improper validation of string parameters in the ActiveX contr...
CVE-2010-3106
CVE-2010-3106 affects the ienipp.ocx ActiveX control in the browser plugin of Novell iPrint Client prior to version 5.42. The vulnerability arises from improper validation of the debug parameter, allowing a crafted length to trigger a stack memory corruption that can lead to remote code execution...
CVE-2008-2432
CVE-2008-2432 affects Novell iPrint Client before 5.06 through an insecure GetFileList method in an unspecified ActiveX control, allowing remote attackers to enumerate image files in arbitrary directories. Remediation: update to version 5.06 (per Secunia Secura advisory). Other sources corroborat...
CVE-2011-4186
CVE-2011-4186 describes a heap-based buffer overflow in Nipplib.dll used by the Novell iPrint Client on Windows, before version 5.78. The flaw occurs when handling the client-file-name parameter in a printer-url, allowing remote code execution with the potential to run under the SYSTEM context. P...
CVE-2011-1707
CVE-2011-1707 affects the Novell iPrint Client (nipplib.dll) prior to version 5.64. A stack-based buffer overflow in the nipplib component occurs when handling the op-printer-list-all-jobs parameter in the printer-url, allowing remote code execution. The vulnerability exists in both ActiveX and N...
CVE-2008-1701
Novell NetWare 6.5 is affected. The vulnerability allows an attacker to cause a denial of service (ABEND) by sending a crafted Macintosh iPrint client request. The issue appears to be triggered via iPrint client interactions, with CVSS metrics indicating a network-vector, low complexity, no authe...
CVE-2011-1704
Novell iPrint Client before 5.64 is affected. The nipplib.dll component can overflow a fixed‑length heap buffer when handling the core-package parameter from the user‑supplied printer-url, allowing remote code execution via the browser plugins (ActiveX/Netscape). Exploitation requires user intera...
CVE-2011-1706
CVE-2011-1706 affects Novell iPrint Client before 5.64, specifically the nipplib.dll handling of the iprint-client-config-info parameter in the printer-url. The vulnerability is a stack-based buffer overflow in nipplib.dll that allows remote code execution when a crafted printer-url parameter is ...
CVE-2011-1703
CVE-2011-1703 involves a heap-based buffer overflow in the Nipplib.dll component of the Novell iPrint Client prior to version 5.64. The vulnerability occurs when processing the printer-url’s driver-version parameter, which is copied into a fixed-length heap buffer, enabling a remote attacker to e...
CVE-2008-5231
CVE-2008-5231 describes a stack-based buffer overflow in the ExecuteRequest method of the Novell iPrint ActiveX control (ienipp.ocx) in Novell iPrint Client 5.06 and earlier. The vulnerability allows remote attackers to execute arbitrary code by supplying a long target-frame option value. Red Hat...
CVE-2010-3105
The CVE-2010-3105 entry concerns Novell iPrint Client before 5.44, where PluginGetDriverFile may interpret an uninitialized memory location as a pointer, enabling remote code execution via unspecified vectors. Multiple connected sources (OpenVAS NASL, Nessus entries, NVD description) corroborate:...
CVE-2010-3107
CVE-2010-3107 concerns Novell iPrint Client prior to 5.42 where an ActiveX control ienipp.ocx in the browser plugin and the nipplib.dll’s CleanUploadFiles logic flaw allow a remote attacker to trigger recursive file deletion, causing a denial of service. The vulnerability is tied to a lack of pro...
CVE-2011-1699
CVE-2011-1699 affects Novell iPrint Client (nipplib.dll) on Windows prior to 5.64. The flaw is a heap-based buffer overflow in handling the uri parameter of the user-supplied printer-url, enabling remote code execution. Exploitation requires user interaction (e.g., visiting a malicious page). Con...
CVE-2011-1705
CVE-2011-1705 affects the Novell iPrint Client (nipplib.dll) on Windows, with the heap-based BOF in nipplib.dll present before version 5.64. The vulnerability allows remote code execution via a crafted client-file-name parameter in a printer-url; exploitation requires the user to visit a maliciou...
CVE-2011-1708
CVE-2011-1708: A stack-based buffer overflow in Nipplib.dll of the Novell iPrint Client (affecting the iPrint Client before 5.64) can allow a remote attacker to execute arbitrary code by supplying a crafted op-printer-list-all-jobs cookie. OpenVAS/ZDI reports confirm the flaw resides in the nippl...
CVE-2013-1091
CVE-2013-1091 affects Novell iPrint Client for Windows, with a stack-based buffer overflow in the handling of URI parameters in IPP responses prior to version 5.90. The root cause is insufficient validation of received URI data, enabling remote code execution when a user loads a crafted page (no ...
CVE-2008-0935
CVE-2008-0935 describes a stack-based buffer overflow in the Novell iPrint Client’s iPrint Control ActiveX (ienipp.ocx). An overly long argument to ExecuteRequest() can allow a remote attacker to execute arbitrary code. Affected product/version: Novell iPrint Client before 4.34 (ActiveX control i...
CVE-2011-1702
The vulnerability CVE-2011-1702 is a heap-based buffer overflow in Nipplib.dll used by the Novell iPrint Client. Affected component: nipplib and related printer-url handling in the iPrint Client before version 5.64. Root cause: improper handling of user-supplied data in the file-date-time paramet...
CVE-2013-3708
The CVE-2013-3708 entry concerns the Novell iPrint Client. The vulnerability exists in the id1.GetPrinterURLList function, affecting iPrint Client versions 5.92 and earlier, where remote attackers can cause a denial of service. The underlying issue is an unspecified vector that enables DoS, with ...
CVE-2011-1701
CVE-2011-1701 affects Novell iPrint Client before 5.64. The flaw is a heap-based buffer overflow in the Nipplib.dll component when processing the profile-name parameter from the user-supplied printer-url, allowing a remote attacker to execute arbitrary code. Exploitation requires crafting the pro...
CVE-2009-3176
The CVE describes a buffer overflow in the Novell iPrint Client 4.38 ActiveX control, which could allow a remote attacker to crash the component and possibly execute arbitrary code. The vulnerability is tied to the ActiveX control within the iPrint client (version 4.38). The provided sources (NVD...
CVE-2010-3108
CVE-2010-3108 affects Novell iPrint Client prior to 5.42 and arises from a buffer overflow in the browser plugin when handling EMBED parameters with long names, enabling remote code execution. The issue is documented as a vulnerability in the iPrint Client (before version 5.42) with a CVSS v2 bas...
CVE-2010-3109
CVE-2010-3109 describes a stack-based buffer overflow in the browser plugin of Novell iPrint Client prior to 5.42, triggered by a long operation parameter. The vulnerable component is the iPrint Client’s browser plugin (likely related to nipplib.dll), and the root cause is a stack-based overflow ...
CVE-2010-4314
CVE-2010-4314 is a buffer overflow in the Novell iPrint Client browser plugin (ActiveX) that allows remote code execution when a page passes an overly long parameter name via the embed tag. The flaw resides in the iPrint web-browser ActiveX plugin, affecting Novell iPrint Client before version 5....
CVE-2011-1700
Novell iPrint Client (nipplib.dll) has a heap-based buffer overflow in the profile-time parameter of the printer-url, affecting versions before 5.64. This vulnerability (CVE-2011-1700) allows remote code execution and is triggered by processing a crafted printer-url profile-time value, with explo...