Lucene search

K
zdiG. GeshevZDI-12-031
HistoryFeb 08, 2012 - 12:00 a.m.

Novell iPrint Server attributes-natural-language Remote Code Execution Vulnerability

2012-02-0800:00:00
G. Geshev
www.zerodayinitiative.com
24

EPSS

0.067

Percentile

93.9%

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Novell iPrint Server. Authentication is not required to exploit this vulnerability. The flaw exists within the mod_ipp apache module component of the iprint-server, which listens by default on 631/tcp. During the handling of get-printer-attributes requests containing a attributes-natural-language attribute cause a validation routine to be hit. When validating this parameter the contents of the attribute are copied, without validation, to a fixed length buffer on the stack. A remote attacker can exploit this vulnerability to execute arbitrary code under the context of the process.

EPSS

0.067

Percentile

93.9%