Heap-based Buffer Overflow in Novell iPrint Client Software
CVE-2011-1705

Currently unrated

Key Information:

Vendor: Novell
Status: Iprint
Vendor: CVE Published:; 9 June 2011

Summary

A heap-based buffer overflow vulnerability exists in the nipplib.dll of the Novell iPrint Client, preceding version 5.64. This flaw permits remote attackers to execute arbitrary code by supplying a specially crafted client-file-name parameter within a printer URL. Successfully exploiting this vulnerability could lead to complete system compromise, making it crucial for users to update their iPrint Client to the latest version to mitigate potential risks. For detailed guidance, refer to Novell's support documentation and available security advisories.

References

http://www.securitytracker.com/id?1025606

vdb-entryx_refsource_SECTRACK

http://download.novell.com/Download?buildid=6_bNby38ERg~

x_refsource_CONFIRM

http://zerodayinitiative.com/advisories/ZDI-11-178/

x_refsource_MISC

EPSS Score

10% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Jun 9, 2011
Vulnerability Reserved
Apr 15, 2011