Stack-based Buffer Overflow in Novell iPrint Client
CVE-2011-1708

Currently unrated

Key Information:

Vendor: Novell
Status: Iprint
Vendor: CVE Published:; 9 June 2011

What is CVE-2011-1708?

The Novell iPrint Client has a stack-based buffer overflow vulnerability in nipplib.dll that allows remote attackers to execute arbitrary code. This is achieved by sending a specially crafted 'op-printer-list-all-jobs' cookie, posing a significant risk to the integrity of affected systems. Users of versions prior to 5.64 are advised to apply necessary patches to mitigate the potential for unauthorized access and control.

References

http://www.securitytracker.com/id?1025606

vdb-entryx_refsource_SECTRACK

http://zerodayinitiative.com/advisories/ZDI-11-180/

x_refsource_MISC

http://download.novell.com/Download?buildid=6_bNby38ERg~

x_refsource_CONFIRM

EPSS Score

10% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 9, 2011
Vulnerability Reserved
Apr 15, 2011