// For flags

CVE-2010-3107

 

Severity Score

7.1
*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

A certain ActiveX control in ienipp.ocx in the browser plugin in Novell iPrint Client before 5.42 does not properly restrict the set of files to be deleted, which allows remote attackers to cause a denial of service (recursive file deletion) via unspecified vectors related to a "logic flaw" in the CleanUploadFiles method in the nipplib.dll module.

Un control ActiveX en ienipp.ocx en el plugin para el navegador del cliente de Novell iPrint antes de v5.42 no limita apropiadamente el conjunto de archivos que desea eliminar, lo que permite provocar a atacantes remotos una denegación de servicio (mediante eliminación de archivos de forma recursiva) a través de vectores no especificados relacionados con "fallo lógico" en el método CleanUploadFiles en el módulo nipplib.dll.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Medium
Authentication
None
Confidentiality
None
Integrity
None
Availability
Complete
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2010-08-23 CVE Reserved
  • 2010-08-23 CVE Published
  • 2023-12-07 EPSS Updated
  • 2024-08-07 CVE Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
  • CWE-264: Permissions, Privileges, and Access Controls
CAPEC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Novell
Search vendor "Novell"
 Iprint
Search vendor "Novell" for product "Iprint"
 <= 5.40
Search vendor "Novell" for product "Iprint" and version " <= 5.40"
-
Affected
Novell
Search vendor "Novell"
 Iprint
Search vendor "Novell" for product "Iprint"
 4.26
Search vendor "Novell" for product "Iprint" and version "4.26"
-
Affected
Novell
Search vendor "Novell"
 Iprint
Search vendor "Novell" for product "Iprint"
 4.27
Search vendor "Novell" for product "Iprint" and version "4.27"
-
Affected
Novell
Search vendor "Novell"
 Iprint
Search vendor "Novell" for product "Iprint"
 4.28
Search vendor "Novell" for product "Iprint" and version "4.28"
-
Affected
Novell
Search vendor "Novell"
 Iprint
Search vendor "Novell" for product "Iprint"
 4.30
Search vendor "Novell" for product "Iprint" and version "4.30"
-
Affected
Novell
Search vendor "Novell"
 Iprint
Search vendor "Novell" for product "Iprint"
 4.32
Search vendor "Novell" for product "Iprint" and version "4.32"
-
Affected
Novell
Search vendor "Novell"
 Iprint
Search vendor "Novell" for product "Iprint"
 4.34
Search vendor "Novell" for product "Iprint" and version "4.34"
-
Affected
Novell
Search vendor "Novell"
 Iprint
Search vendor "Novell" for product "Iprint"
 4.36
Search vendor "Novell" for product "Iprint" and version "4.36"
-
Affected
Novell
Search vendor "Novell"
 Iprint
Search vendor "Novell" for product "Iprint"
 4.38
Search vendor "Novell" for product "Iprint" and version "4.38"
-
Affected
Novell
Search vendor "Novell"
 Iprint
Search vendor "Novell" for product "Iprint"
 5.04
Search vendor "Novell" for product "Iprint" and version "5.04"
-
Affected
Novell
Search vendor "Novell"
 Iprint
Search vendor "Novell" for product "Iprint"
 5.12
Search vendor "Novell" for product "Iprint" and version "5.12"
-
Affected
Novell
Search vendor "Novell"
 Iprint
Search vendor "Novell" for product "Iprint"
 5.20b
Search vendor "Novell" for product "Iprint" and version "5.20b"
-
Affected
Novell
Search vendor "Novell"
 Iprint
Search vendor "Novell" for product "Iprint"
 5.30
Search vendor "Novell" for product "Iprint" and version "5.30"
-
Affected
Novell
Search vendor "Novell"
 Iprint
Search vendor "Novell" for product "Iprint"
 5.32
Search vendor "Novell" for product "Iprint" and version "5.32"
-
Affected