Remote Code Execution Vulnerability in Novell iPrint Client
CVE-2011-1700

Currently unrated

Key Information:

Vendor: Novell
Status: Iprint
Vendor: CVE Published:; 9 June 2011

Summary

A heap-based buffer overflow vulnerability exists in the nipplib.dll of Novell iPrint Client versions prior to 5.64. This flaw allows remote attackers to exploit crafted profile-time parameters in a printer URL, potentially enabling them to execute arbitrary code on the affected system. It is crucial for users of the Novell iPrint Client to apply the appropriate patches and safeguard their systems from potential exploitation.

References

http://zerodayinitiative.com/advisories/ZDI-11-173/

x_refsource_MISC

http://www.securitytracker.com/id?1025606

vdb-entryx_refsource_SECTRACK

http://www.securityfocus.com/archive/1/518267/100/0/threaded

mailing-listx_refsource_BUGTRAQ

EPSS Score

23% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Jun 9, 2011
Vulnerability Reserved
Apr 15, 2011