CVE-2010-4314

8.8HIGH

Key Information

Vendor
Novell
Status
Novell Iprint Webrowser Activex Plugin
Vendor
CVE Published:
11 March 2017

Summary

Remote attackers can use the iPrint web-browser ActiveX plugin in Novell iPrint Client before 5.42 for Windows XP/Vista/Win7 to execute code by overflowing the "name" parameter.

Affected Version(s)

Novell iPrint webrowser ActiveX plugin = Novell iPrint webrowser ActiveX plugin

EPSS Score

7% chance of being exploited in the next 30 days.

CVSS V3.1

Score:
8.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published.

  • Vulnerability Reserved.

Collectors

NVD DatabaseMitre Database
.