fkie_nvd - fkie_cve-2011-4186

fkie_cve-2011-4186

Vulnerability from fkie_nvd

Published

2012-02-21 13:31

Modified

2025-04-11 00:51

Severity ?

Summary

Heap-based buffer overflow in nipplib.dll in Novell iPrint Client before 5.78 on Windows allows remote attackers to execute arbitrary code via a crafted client-file-name parameter in a printer-url, a different vulnerability than CVE-2011-1705.

References

URL	Tags
cve@mitre.org	http://www.novell.com/support/viewContent.do?externalId=7008708
cve@mitre.org	http://www.novell.com/support/viewContent.do?externalId=7010145	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.novell.com/support/viewContent.do?externalId=7008708
af854a3a-2127-422b-91ae-364da2661108	http://www.novell.com/support/viewContent.do?externalId=7010145	Vendor Advisory

Impacted products

Vendor	Product	Version
novell	iprint	*
novell	iprint	4.26
novell	iprint	4.27
novell	iprint	4.28
novell	iprint	4.30
novell	iprint	4.32
novell	iprint	4.34
novell	iprint	4.36
novell	iprint	4.38
novell	iprint	5.04
novell	iprint	5.12
novell	iprint	5.20b
novell	iprint	5.30
novell	iprint	5.32
novell	iprint	5.40
novell	iprint	5.42
novell	iprint	5.44
novell	iprint	5.50
novell	iprint	5.52
novell	iprint	5.56
novell	iprint	5.60
novell	iprint	5.64
novell	iprint	5.68
novell	iprint	5.72
microsoft	windows	*

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:novell:iprint:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "D5EF91A6-8930-4DAE-A1D9-BBB92D109282",
              "versionEndIncluding": "5.74",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:novell:iprint:4.26:*:*:*:*:*:*:*",
              "matchCriteriaId": "3332CB43-D2ED-4720-8ED4-AE222C6F7FF3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:novell:iprint:4.27:*:*:*:*:*:*:*",
              "matchCriteriaId": "E9AD9057-2218-481E-96CB-BF568AD3A9F2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:novell:iprint:4.28:*:*:*:*:*:*:*",
              "matchCriteriaId": "0D044326-00CB-4158-A652-7D7FBDB380C7",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:novell:iprint:4.30:*:*:*:*:*:*:*",
              "matchCriteriaId": "3BDA0CD3-3E49-42E9-8D41-2B93FEE53610",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:novell:iprint:4.32:*:*:*:*:*:*:*",
              "matchCriteriaId": "AAB01661-76E1-4181-A798-6325EFD681FE",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:novell:iprint:4.34:*:*:*:*:*:*:*",
              "matchCriteriaId": "16769BC0-66AE-4AA3-B504-03389717A56D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:novell:iprint:4.36:*:*:*:*:*:*:*",
              "matchCriteriaId": "25B2994C-8E01-4E7B-A5CA-9F9BE4C634C7",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:novell:iprint:4.38:*:*:*:*:*:*:*",
              "matchCriteriaId": "CCCA90D8-A320-43B0-A667-DAFC0D00924F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:novell:iprint:5.04:*:*:*:*:*:*:*",
              "matchCriteriaId": "6F12CAA5-6C37-4FBA-BA41-03C7F81AE6BE",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:novell:iprint:5.12:*:*:*:*:*:*:*",
              "matchCriteriaId": "CCA3CFFD-8D4B-4BEC-934A-7E5D18F87807",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:novell:iprint:5.20b:*:*:*:*:*:*:*",
              "matchCriteriaId": "A2A31E77-BFE6-4F54-9839-8323F8E4995E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:novell:iprint:5.30:*:*:*:*:*:*:*",
              "matchCriteriaId": "7E8EC466-1CA2-4D8E-8D3F-F1246DC1850B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:novell:iprint:5.32:*:*:*:*:*:*:*",
              "matchCriteriaId": "27533465-909A-4300-A713-36924FB330CA",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:novell:iprint:5.40:*:*:*:*:*:*:*",
              "matchCriteriaId": "CA155873-6210-4775-8CCA-7413F7DD172C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:novell:iprint:5.42:*:*:*:*:*:*:*",
              "matchCriteriaId": "177AFE43-3B8A-49FD-B91F-20BA1DCD2B10",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:novell:iprint:5.44:*:*:*:*:*:*:*",
              "matchCriteriaId": "C2CE3262-2CC1-450D-B2C1-4BB4C239F435",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:novell:iprint:5.50:*:*:*:*:*:*:*",
              "matchCriteriaId": "5FCF72D3-9B10-4E31-8575-FDE0DB1A72E2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:novell:iprint:5.52:*:*:*:*:*:*:*",
              "matchCriteriaId": "634E2701-AE87-4F85-8F1D-DE732FB20E22",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:novell:iprint:5.56:*:*:*:*:*:*:*",
              "matchCriteriaId": "E102B7A1-13DD-4A62-8DFB-A59D3D14DFCF",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:novell:iprint:5.60:*:*:*:*:*:*:*",
              "matchCriteriaId": "F2125DEA-9648-4921-B8BB-259D05EF40F8",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:novell:iprint:5.64:*:*:*:*:*:*:*",
              "matchCriteriaId": "46CBBCF9-8C1D-4670-BBC9-1B2413978C4C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:novell:iprint:5.68:*:*:*:*:*:*:*",
              "matchCriteriaId": "F823A271-6EDE-4AD8-9448-57B6E04A96F3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:novell:iprint:5.72:*:*:*:*:*:*:*",
              "matchCriteriaId": "62795E20-0BDB-4F00-8B47-49A10AD4AEA1",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "2CF61F35-5905-4BA9-AD7E-7DB261D2F256",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Heap-based buffer overflow in nipplib.dll in Novell iPrint Client before 5.78 on Windows allows remote attackers to execute arbitrary code via a crafted client-file-name parameter in a printer-url, a different vulnerability than CVE-2011-1705."
    },
    {
      "lang": "es",
      "value": "Una vulnerabilidad de desbordamiento de pila basado en b\u00fafer en nipplib.dll en el cliente de Novell iPrint antes de v5.78 bajo Windows permite a atacantes remotos ejecutar c\u00f3digo de su elecci\u00f3n a trav\u00e9s de un par\u00e1metro client-file-name (nombre de archivo cliente) en una URL de impresora. Se trata de una vulnerabilidad diferente a CVE-2011-1705."
    }
  ],
  "id": "CVE-2011-4186",
  "lastModified": "2025-04-11T00:51:21.963",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "MEDIUM",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 9.3,
          "confidentialityImpact": "COMPLETE",
          "integrityImpact": "COMPLETE",
          "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 8.6,
        "impactScore": 10.0,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": true
      }
    ]
  },
  "published": "2012-02-21T13:31:34.970",
  "references": [
    {
      "source": "cve@mitre.org",
      "url": "http://www.novell.com/support/viewContent.do?externalId=7008708"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www.novell.com/support/viewContent.do?externalId=7010145"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.novell.com/support/viewContent.do?externalId=7008708"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www.novell.com/support/viewContent.do?externalId=7010145"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-119"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

CVE-2011-4186 (GCVE-0-2011-4186)

Vulnerability from cvelistv5

Published

2012-02-20 21:00

Modified

2024-09-17 00:46