Shodan
Vulnerabilities
Vulnerable Software
Novell:  >> Iprint  >> 5.40  Security Vulnerabilities
CVE-2011-1701
Heap-based buffer overflow in nipplib.dll in Novell iPrint Client before 5.64 allows remote attackers to execute arbitrary code via a crafted profile-name parameter in a printer-url.
CVSS Score
9.3
EPSS Score
0.109
Published
2011-06-09
CVE-2011-1702
Heap-based buffer overflow in nipplib.dll in Novell iPrint Client before 5.64 allows remote attackers to execute arbitrary code via a crafted file-date-time parameter in a printer-url.
CVSS Score
9.3
EPSS Score
0.078
Published
2011-06-09
CVE-2011-1703
Heap-based buffer overflow in nipplib.dll in Novell iPrint Client before 5.64 allows remote attackers to execute arbitrary code via a crafted driver-version parameter in a printer-url.
CVSS Score
9.3
EPSS Score
0.109
Published
2011-06-09
CVE-2011-1704
Heap-based buffer overflow in nipplib.dll in Novell iPrint Client before 5.64 allows remote attackers to execute arbitrary code via a crafted core-package parameter in a printer-url.
CVSS Score
9.3
EPSS Score
0.109
Published
2011-06-09
CVE-2011-1705
Heap-based buffer overflow in nipplib.dll in Novell iPrint Client before 5.64 allows remote attackers to execute arbitrary code via a crafted client-file-name parameter in a printer-url.
CVSS Score
9.3
EPSS Score
0.109
Published
2011-06-09
CVE-2011-1706
Stack-based buffer overflow in nipplib.dll in Novell iPrint Client before 5.64 allows remote attackers to execute arbitrary code via a crafted iprint-client-config-info parameter in a printer-url.
CVSS Score
9.3
EPSS Score
0.102
Published
2011-06-09
CVE-2011-1707
Stack-based buffer overflow in nipplib.dll in Novell iPrint Client before 5.64 allows remote attackers to execute arbitrary code via a crafted op-printer-list-all-jobs parameter in a printer-url.
CVSS Score
9.3
EPSS Score
0.203
Published
2011-06-09
CVE-2010-3105
The PluginGetDriverFile function in Novell iPrint Client before 5.44 interprets an uninitialized memory location as a pointer value, which allows remote attackers to execute arbitrary code via unspecified vectors. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
CVSS Score
9.3
EPSS Score
0.052
Published
2010-08-23
CVE-2010-3106
The ienipp.ocx ActiveX control in the browser plugin in Novell iPrint Client before 5.42 does not properly validate the debug parameter, which allows remote attackers to execute arbitrary code or cause a denial of service (stack memory corruption) via a parameter value with a crafted length, related to the ExecuteRequest method.
CVSS Score
9.3
EPSS Score
0.558
Published
2010-08-23
CVE-2010-3107
A certain ActiveX control in ienipp.ocx in the browser plugin in Novell iPrint Client before 5.42 does not properly restrict the set of files to be deleted, which allows remote attackers to cause a denial of service (recursive file deletion) via unspecified vectors related to a "logic flaw" in the CleanUploadFiles method in the nipplib.dll module.
CVSS Score
7.1
EPSS Score
0.034
Published
2010-08-23


Products
Pricing
Contact Us

Shodan ® - All rights reserved