fkie_cve-2011-1704
Vulnerability from fkie_nvd
Published
2011-06-09 19:55
Modified
2025-04-11 00:51
Severity ?
Summary
Heap-based buffer overflow in nipplib.dll in Novell iPrint Client before 5.64 allows remote attackers to execute arbitrary code via a crafted core-package parameter in a printer-url.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| novell | iprint | * | |
| novell | iprint | 4.26 | |
| novell | iprint | 4.27 | |
| novell | iprint | 4.28 | |
| novell | iprint | 4.30 | |
| novell | iprint | 4.32 | |
| novell | iprint | 4.34 | |
| novell | iprint | 4.36 | |
| novell | iprint | 4.38 | |
| novell | iprint | 5.04 | |
| novell | iprint | 5.12 | |
| novell | iprint | 5.20b | |
| novell | iprint | 5.30 | |
| novell | iprint | 5.32 | |
| novell | iprint | 5.40 | |
| novell | iprint | 5.42 | |
| novell | iprint | 5.44 | |
| novell | iprint | 5.50 | |
| novell | iprint | 5.52 | |
| novell | iprint | 5.56 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:novell:iprint:*:*:*:*:*:*:*:*",
"matchCriteriaId": "5518821A-F681-495A-8043-27ECF8ACC506",
"versionEndIncluding": "5.60",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:novell:iprint:4.26:*:*:*:*:*:*:*",
"matchCriteriaId": "3332CB43-D2ED-4720-8ED4-AE222C6F7FF3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:novell:iprint:4.27:*:*:*:*:*:*:*",
"matchCriteriaId": "E9AD9057-2218-481E-96CB-BF568AD3A9F2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:novell:iprint:4.28:*:*:*:*:*:*:*",
"matchCriteriaId": "0D044326-00CB-4158-A652-7D7FBDB380C7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:novell:iprint:4.30:*:*:*:*:*:*:*",
"matchCriteriaId": "3BDA0CD3-3E49-42E9-8D41-2B93FEE53610",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:novell:iprint:4.32:*:*:*:*:*:*:*",
"matchCriteriaId": "AAB01661-76E1-4181-A798-6325EFD681FE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:novell:iprint:4.34:*:*:*:*:*:*:*",
"matchCriteriaId": "16769BC0-66AE-4AA3-B504-03389717A56D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:novell:iprint:4.36:*:*:*:*:*:*:*",
"matchCriteriaId": "25B2994C-8E01-4E7B-A5CA-9F9BE4C634C7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:novell:iprint:4.38:*:*:*:*:*:*:*",
"matchCriteriaId": "CCCA90D8-A320-43B0-A667-DAFC0D00924F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:novell:iprint:5.04:*:*:*:*:*:*:*",
"matchCriteriaId": "6F12CAA5-6C37-4FBA-BA41-03C7F81AE6BE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:novell:iprint:5.12:*:*:*:*:*:*:*",
"matchCriteriaId": "CCA3CFFD-8D4B-4BEC-934A-7E5D18F87807",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:novell:iprint:5.20b:*:*:*:*:*:*:*",
"matchCriteriaId": "A2A31E77-BFE6-4F54-9839-8323F8E4995E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:novell:iprint:5.30:*:*:*:*:*:*:*",
"matchCriteriaId": "7E8EC466-1CA2-4D8E-8D3F-F1246DC1850B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:novell:iprint:5.32:*:*:*:*:*:*:*",
"matchCriteriaId": "27533465-909A-4300-A713-36924FB330CA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:novell:iprint:5.40:*:*:*:*:*:*:*",
"matchCriteriaId": "CA155873-6210-4775-8CCA-7413F7DD172C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:novell:iprint:5.42:*:*:*:*:*:*:*",
"matchCriteriaId": "177AFE43-3B8A-49FD-B91F-20BA1DCD2B10",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:novell:iprint:5.44:*:*:*:*:*:*:*",
"matchCriteriaId": "C2CE3262-2CC1-450D-B2C1-4BB4C239F435",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:novell:iprint:5.50:*:*:*:*:*:*:*",
"matchCriteriaId": "5FCF72D3-9B10-4E31-8575-FDE0DB1A72E2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:novell:iprint:5.52:*:*:*:*:*:*:*",
"matchCriteriaId": "634E2701-AE87-4F85-8F1D-DE732FB20E22",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:novell:iprint:5.56:*:*:*:*:*:*:*",
"matchCriteriaId": "E102B7A1-13DD-4A62-8DFB-A59D3D14DFCF",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Heap-based buffer overflow in nipplib.dll in Novell iPrint Client before 5.64 allows remote attackers to execute arbitrary code via a crafted core-package parameter in a printer-url."
},
{
"lang": "es",
"value": "Desbordamiento de b\u00fafer basado en memoria din\u00e1mica en nipplib.dll en Novell iPrint Client anterior a v5.64 permite a atacantes remotos ejecutar c\u00f3digo de su elecci\u00f3n a trav\u00e9s del par\u00e1metro manipulado core-package en un printer-url."
}
],
"id": "CVE-2011-1704",
"lastModified": "2025-04-11T00:51:21.963",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "HIGH",
"cvssData": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 9.3,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 10.0,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": true
}
]
},
"published": "2011-06-09T19:55:01.587",
"references": [
{
"source": "cve@mitre.org",
"tags": [
"Patch"
],
"url": "http://download.novell.com/Download?buildid=6_bNby38ERg~"
},
{
"source": "cve@mitre.org",
"url": "http://secunia.com/advisories/44811"
},
{
"source": "cve@mitre.org",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://www.novell.com/support/php/search.do?cmd=displayKC\u0026docType=kc\u0026externalId=7008728"
},
{
"source": "cve@mitre.org",
"url": "http://www.securityfocus.com/archive/1/518268/100/0/threaded"
},
{
"source": "cve@mitre.org",
"url": "http://www.securityfocus.com/bid/48124"
},
{
"source": "cve@mitre.org",
"url": "http://www.securitytracker.com/id?1025606"
},
{
"source": "cve@mitre.org",
"url": "http://zerodayinitiative.com/advisories/ZDI-11-177/"
},
{
"source": "cve@mitre.org",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/67879"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch"
],
"url": "http://download.novell.com/Download?buildid=6_bNby38ERg~"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/44811"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://www.novell.com/support/php/search.do?cmd=displayKC\u0026docType=kc\u0026externalId=7008728"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.securityfocus.com/archive/1/518268/100/0/threaded"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.securityfocus.com/bid/48124"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.securitytracker.com/id?1025606"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://zerodayinitiative.com/advisories/ZDI-11-177/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/67879"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-119"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…