Remote Code Execution in Novell iPrint Client
CVE-2011-1707

Currently unrated

Key Information:

Vendor: Novell
Status: Iprint
Vendor: CVE Published:; 9 June 2011

Summary

A stack-based buffer overflow vulnerability exists in nipplib.dll in Novell iPrint Client versions prior to 5.64. This flaw allows remote attackers to exploit the system by crafting a malicious 'op-printer-list-all-jobs' parameter in a printer URL, potentially leading to remote code execution. System administrators should apply necessary updates and patches to mitigate risks related to this vulnerability.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/67883

vdb-entryx_refsource_XF

http://www.securitytracker.com/id?1025606

vdb-entryx_refsource_SECTRACK

http://zerodayinitiative.com/advisories/ZDI-11-181/

x_refsource_MISC

EPSS Score

20% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Jun 9, 2011
Vulnerability Reserved
Apr 15, 2011