CVE-2011-4187 – Novell iPrint Client nipplib.dll GetDriverSettings realm Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2011-4187
Buffer overflow in the GetDriverSettings function in nipplib.dll in Novell iPrint Client before 5.78 on Windows allows remote attackers to execute arbitrary code via a long realm field, a different vulnerability than CVE-2011-3173. Desbordamiento de búfer en la función GetDriverSettings en ??nipplib.dll en el cliente de Novell iPrint antes de v5.78 en Windows permite a atacantes remotos ejecutar código de su elección a través de un campo de dominio de largo. Se trata de una vulnerabilidad diferente a CVE-2011-3173. This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Novell iPrint Client. • http://www.novell.com/support/viewContent.do?externalId=7008708 http://www.novell.com/support/viewContent.do?externalId=7010143 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2010-3105
https://notcve.org/view.php?id=CVE-2010-3105
The PluginGetDriverFile function in Novell iPrint Client before 5.44 interprets an uninitialized memory location as a pointer value, which allows remote attackers to execute arbitrary code via unspecified vectors. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. La función PluginGetDriverFile en Novell iPrint Client antes de v5.44 interpreta una posición de memoria no inicializada como un valor de puntero, lo que permite a atacantes remotos ejecutar código arbitrario a través de vectores no especificados. NOTA: la procedencia de esta información es desconocida, los detalles se han obtenido únicamente de información de terceros. • http://secunia.com/advisories/40805 http://www.securityfocus.com/bid/42576 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11817 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2010-1527 – Novell iPrint Client Browser Plugin - 'call-back-url' Remote Stack Overflow
https://notcve.org/view.php?id=CVE-2010-1527
Stack-based buffer overflow in Novell iPrint Client before 5.44 allows remote attackers to execute arbitrary code via a long call-back-url parameter in an op-client-interface-version action. Un desbordamiento de búfer basado en pila en iPrint de Novell Client antes de v5.44 permite a atacantes remotos ejecutar código arbitrario mediante un parámetro call-back-url demasiado largo en una acción op-client-interface-version. • https://www.exploit-db.com/exploits/15042 https://www.exploit-db.com/exploits/15072 http://secunia.com/advisories/40805 http://secunia.com/secunia_research/2010-104 http://www.novell.com/support/viewContent.do?externalId=7006679 http://www.securityfocus.com/bid/42576 https://exchange.xforce.ibmcloud.com/vulnerabilities/61220 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11973 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •