CVSS: 9.8EPSS: 5%CPEs: 15EXPL: 0CVE-2010-3105
https://notcve.org/view.php?id=CVE-2010-3105
23 Aug 2010 — The PluginGetDriverFile function in Novell iPrint Client before 5.44 interprets an uninitialized memory location as a pointer value, which allows remote attackers to execute arbitrary code via unspecified vectors. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. La función PluginGetDriverFile en Novell iPrint Client antes de v5.44 interpreta una posición de memoria no inicializada como un valor de puntero, lo que permite a atacantes remotos e... • http://secunia.com/advisories/40805 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 61%CPEs: 14EXPL: 2CVE-2010-3106 – Novell iPrint Client - ActiveX Control 'debug' Remote Buffer Overflow
https://notcve.org/view.php?id=CVE-2010-3106
23 Aug 2010 — The ienipp.ocx ActiveX control in the browser plugin in Novell iPrint Client before 5.42 does not properly validate the debug parameter, which allows remote attackers to execute arbitrary code or cause a denial of service (stack memory corruption) via a parameter value with a crafted length, related to the ExecuteRequest method. El control ActiveX ienipp.ocx en el plugin para el navegador en el cliente de Novell iPrint antes de v5.42 no valida correctamente el parámetro debug, lo que permite a atacantes rem... • https://www.exploit-db.com/exploits/15073 • CWE-20: Improper Input Validation •
CVSS: 7.5EPSS: 3%CPEs: 14EXPL: 0CVE-2010-3107
https://notcve.org/view.php?id=CVE-2010-3107
23 Aug 2010 — A certain ActiveX control in ienipp.ocx in the browser plugin in Novell iPrint Client before 5.42 does not properly restrict the set of files to be deleted, which allows remote attackers to cause a denial of service (recursive file deletion) via unspecified vectors related to a "logic flaw" in the CleanUploadFiles method in the nipplib.dll module. Un control ActiveX en ienipp.ocx en el plugin para el navegador del cliente de Novell iPrint antes de v5.42 no limita apropiadamente el conjunto de archivos que d... • http://download.novell.com/Download?buildid=ftwZBxEFjIg~ • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 9.8EPSS: 7%CPEs: 14EXPL: 0CVE-2010-3108
https://notcve.org/view.php?id=CVE-2010-3108
23 Aug 2010 — Buffer overflow in the browser plugin in Novell iPrint Client before 5.42 allows remote attackers to execute arbitrary code by using EMBED elements to pass parameters with long names. Un desbordamiento de búfer en el plugin para el navegador en Novell iPrint Client antes de v5.42 permite a atacantes remotos ejecutar código arbitrario mediante el uso de elementos EMBED para pasar parámetros con nombres largos. • http://download.novell.com/Download?buildid=ftwZBxEFjIg~ • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 7%CPEs: 14EXPL: 0CVE-2010-3109
https://notcve.org/view.php?id=CVE-2010-3109
23 Aug 2010 — Stack-based buffer overflow in the browser plugin in Novell iPrint Client before 5.42 allows remote attackers to execute arbitrary code via a long operation parameter. Un desbordamiento de búfer basado en pila en el complemento del navegador en Novell iPrint Client antes de v5.42 permite a atacantes remotos ejecutar código arbitrario mediante un parámetro operation excesivamente largo. • http://download.novell.com/Download?buildid=ftwZBxEFjIg~ • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 1%CPEs: 4EXPL: 0CVE-2010-4314 – Novell iPrint Client Browser Plugin Parameter Name Remote Code Execution
https://notcve.org/view.php?id=CVE-2010-4314
05 Aug 2010 — Remote attackers can use the iPrint web-browser ActiveX plugin in Novell iPrint Client before 5.42 for Windows XP/Vista/Win7 to execute code by overflowing the "name" parameter. Atacantes remotos puede utilizar el plugin ActiveX del navegador web de iPrint en Novell iPrint Client en versiones anteriores a 5.42 para Windows XP/Vista/Win7 para ejecutar código desbordando el parámetro "name". This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of the Novell iPrint C... • https://www.novell.com/support/kb/doc.php?id=7006675 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 61%CPEs: 2EXPL: 1CVE-2009-1568 – Novell iPrint Client - ActiveX Control target-frame Buffer Overflow
https://notcve.org/view.php?id=CVE-2009-1568
08 Dec 2009 — Stack-based buffer overflow in ienipp.ocx in Novell iPrint Client 5.30, and possibly other versions before 5.32, allows remote attackers to execute arbitrary code via a long target-frame parameter. esbordamiento de búfer basado en pila en ienipp.ocx en Novell iPrint Client v5.30, y probablemente otras versiones anteriores a v5.32, permite a atacantes remotos ejecutar código de su elección a través de un parámetro largo target-frame. • https://www.exploit-db.com/exploits/16523 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 65%CPEs: 2EXPL: 1CVE-2009-1569 – Novell iPrint Client - ActiveX Control Date/Time Buffer Overflow
https://notcve.org/view.php?id=CVE-2009-1569
08 Dec 2009 — Multiple stack-based buffer overflows in Novell iPrint Client 4.38, 5.30, and possibly other versions before 5.32 allow remote attackers to execute arbitrary code via vectors related to (1) Date and (2) Time. Múltiples desbordamientos de búfer basados en pila en Novell iPrint Client v4.38, v5.30, y probablemente otras versiones anteriores a v5.32 permite a atacantes remotos ejecutar código de su elección a través de vectores relacionados con (1) Date y (2) Time. • https://www.exploit-db.com/exploits/16543 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 5%CPEs: 1EXPL: 0CVE-2009-3176
https://notcve.org/view.php?id=CVE-2009-3176
11 Sep 2009 — Buffer overflow in the ActiveX control in Novell iPrint Client 4.38 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unknown attack vectors, as demonstrated by a certain module in VulnDisco Pack Professional 8.1, "Novell iPrint Client 4.38 ActiveX exploit." NOTE: as of 20090909, this disclosure has no actionable information. However, because the VulnDisco Pack author is a reliable researcher, the issue is being assigned a CVE identifier for tracking purpos... • http://intevydis.com/vd-list.shtml • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 43%CPEs: 9EXPL: 0CVE-2008-2431
https://notcve.org/view.php?id=CVE-2008-2431
26 Nov 2008 — Multiple buffer overflows in Novell iPrint Client before 5.06 allow remote attackers to execute arbitrary code by calling the Novell iPrint ActiveX control (aka ienipp.ocx) with (1) a long third argument to the GetDriverFile method; a long first argument to the (2) GetPrinterURLList or (3) GetPrinterURLList2 method; (4) a long argument to the GetFileList method; a long argument to the (5) GetServerVersion, (6) GetResourceList, or (7) DeleteResource method, related to nipplib.dll; a long uploadPath argument ... • http://secunia.com/advisories/30667 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •