Remote Code Execution Vulnerability in Novell iPrint Client
CVE-2011-1703

Currently unrated

Key Information:

Vendor: Novell
Status: Iprint
Vendor: CVE Published:; 9 June 2011

Summary

A heap-based buffer overflow vulnerability exists in the nipplib.dll component of Novell iPrint Client versions prior to 5.64. This flaw can be exploited by remote attackers who craft malicious driver-version parameters in printer URLs. If successfully exploited, this vulnerability can allow attackers to execute arbitrary code on affected systems, potentially leading to system compromise and unauthorized access.

References

http://www.securitytracker.com/id?1025606

vdb-entryx_refsource_SECTRACK

http://www.novell.com/support/php/search.do?cmd=displayKC...

x_refsource_CONFIRM

http://download.novell.com/Download?buildid=6_bNby38ERg~

x_refsource_CONFIRM

EPSS Score

10% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Jun 9, 2011
Vulnerability Reserved
Apr 15, 2011