Remote Code Execution Vulnerability in Novell iPrint Client on Windows
CVE-2011-4185

Currently unrated

Key Information:

Vendor
Novell
Status
Iprint
Vendor
CVE Published:
21 February 2012

Summary

The GetPrinterURLList2 method in the ActiveX control for Novell iPrint Client prior to version 5.78 on Windows is susceptible to a vulnerability that enables remote attackers to execute arbitrary code or induce a denial of service through unspecified vectors. This flaw poses significant risks as it may lead to unauthorized access to system resources, creating potential avenues for exploitation by malicious actors. Mitigating this risk involves updating to a patched version of the software and enforcing best practices for ActiveX controls.

References

http://www.novell.com/support/viewContent.do?externalId=7...
x_refsource_CONFIRM
http://www.novell.com/support/viewContent.do?externalId=7...
x_refsource_CONFIRM

EPSS Score

19% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability Reserved

  • Vulnerability published

.
CVE-2011-4185 : Remote Code Execution Vulnerability in Novell iPrint Client on Windows | SecurityVulnerability.io