U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

Search Results (Refine Search)

Search Parameters:
  • Results Type: Overview
  • Keyword (text search): cpe:2.3:a:novell:iprint:5.30:*:*:*:*:*:*:*
  • CPE Name Search: true
There are 24 matching records.
Displaying matches 1 through 20.
Vuln ID Summary CVSS Severity
CVE-2010-4314

Remote attackers can use the iPrint web-browser ActiveX plugin in Novell iPrint Client before 5.42 for Windows XP/Vista/Win7 to execute code by overflowing the "name" parameter.

Published: March 11, 2017; 1:59:00 AM -0500
V3.0: 8.8 HIGH
V2.0: 9.3 HIGH
CVE-2013-3708

The id1.GetPrinterURLList function in Novell iPrint Client before 5.93 allows remote attackers to cause a denial of service via unspecified vectors.

Published: November 30, 2013; 11:31:49 PM -0500
V3.x:(not available)
V2.0: 5.0 MEDIUM
CVE-2013-1091

Stack-based buffer overflow in Novell iPrint Client before 5.90 allows remote attackers to execute arbitrary code via unspecified vectors.

Published: May 02, 2013; 2:55:05 PM -0400
V3.x:(not available)
V2.0: 10.0 HIGH
CVE-2012-0411

Unspecified vulnerability in Novell iPrint Client before 5.82 allows remote attackers to execute arbitrary code via an op-client-interface-version action.

Published: December 24, 2012; 1:55:01 PM -0500
V3.x:(not available)
V2.0: 10.0 HIGH
CVE-2011-4187

Buffer overflow in the GetDriverSettings function in nipplib.dll in Novell iPrint Client before 5.78 on Windows allows remote attackers to execute arbitrary code via a long realm field, a different vulnerability than CVE-2011-3173.

Published: February 21, 2012; 8:31:35 AM -0500
V3.x:(not available)
V2.0: 10.0 HIGH
CVE-2011-4186

Heap-based buffer overflow in nipplib.dll in Novell iPrint Client before 5.78 on Windows allows remote attackers to execute arbitrary code via a crafted client-file-name parameter in a printer-url, a different vulnerability than CVE-2011-1705.

Published: February 21, 2012; 8:31:34 AM -0500
V3.x:(not available)
V2.0: 9.3 HIGH
CVE-2011-4185

The GetPrinterURLList2 method in the ActiveX control in Novell iPrint Client before 5.78 on Windows allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2008-2431 and CVE-2008-2436.

Published: February 21, 2012; 8:31:34 AM -0500
V3.x:(not available)
V2.0: 10.0 HIGH
CVE-2011-1708

Stack-based buffer overflow in nipplib.dll in Novell iPrint Client before 5.64 allows remote attackers to execute arbitrary code via a crafted op-printer-list-all-jobs cookie.

Published: June 09, 2011; 5:55:00 PM -0400
V3.x:(not available)
V2.0: 9.3 HIGH
CVE-2011-1707

Stack-based buffer overflow in nipplib.dll in Novell iPrint Client before 5.64 allows remote attackers to execute arbitrary code via a crafted op-printer-list-all-jobs parameter in a printer-url.

Published: June 09, 2011; 3:55:01 PM -0400
V3.x:(not available)
V2.0: 9.3 HIGH
CVE-2011-1706

Stack-based buffer overflow in nipplib.dll in Novell iPrint Client before 5.64 allows remote attackers to execute arbitrary code via a crafted iprint-client-config-info parameter in a printer-url.

Published: June 09, 2011; 3:55:01 PM -0400
V3.x:(not available)
V2.0: 9.3 HIGH
CVE-2011-1705

Heap-based buffer overflow in nipplib.dll in Novell iPrint Client before 5.64 allows remote attackers to execute arbitrary code via a crafted client-file-name parameter in a printer-url.

Published: June 09, 2011; 3:55:01 PM -0400
V3.x:(not available)
V2.0: 9.3 HIGH
CVE-2011-1704

Heap-based buffer overflow in nipplib.dll in Novell iPrint Client before 5.64 allows remote attackers to execute arbitrary code via a crafted core-package parameter in a printer-url.

Published: June 09, 2011; 3:55:01 PM -0400
V3.x:(not available)
V2.0: 9.3 HIGH
CVE-2011-1703

Heap-based buffer overflow in nipplib.dll in Novell iPrint Client before 5.64 allows remote attackers to execute arbitrary code via a crafted driver-version parameter in a printer-url.

Published: June 09, 2011; 3:55:01 PM -0400
V3.x:(not available)
V2.0: 9.3 HIGH
CVE-2011-1702

Heap-based buffer overflow in nipplib.dll in Novell iPrint Client before 5.64 allows remote attackers to execute arbitrary code via a crafted file-date-time parameter in a printer-url.

Published: June 09, 2011; 3:55:01 PM -0400
V3.x:(not available)
V2.0: 9.3 HIGH
CVE-2011-1701

Heap-based buffer overflow in nipplib.dll in Novell iPrint Client before 5.64 allows remote attackers to execute arbitrary code via a crafted profile-name parameter in a printer-url.

Published: June 09, 2011; 3:55:01 PM -0400
V3.x:(not available)
V2.0: 9.3 HIGH
CVE-2011-1700

Heap-based buffer overflow in nipplib.dll in Novell iPrint Client before 5.64 allows remote attackers to execute arbitrary code via a crafted profile-time parameter in a printer-url.

Published: June 09, 2011; 3:55:01 PM -0400
V3.x:(not available)
V2.0: 9.3 HIGH
CVE-2011-1699

Heap-based buffer overflow in nipplib.dll in Novell iPrint Client before 5.64 allows remote attackers to execute arbitrary code via a crafted uri parameter in a printer-url.

Published: June 09, 2011; 3:55:01 PM -0400
V3.x:(not available)
V2.0: 9.3 HIGH
CVE-2010-3109

Stack-based buffer overflow in the browser plugin in Novell iPrint Client before 5.42 allows remote attackers to execute arbitrary code via a long operation parameter.

Published: August 23, 2010; 6:00:03 PM -0400
V3.x:(not available)
V2.0: 9.3 HIGH
CVE-2010-3108

Buffer overflow in the browser plugin in Novell iPrint Client before 5.42 allows remote attackers to execute arbitrary code by using EMBED elements to pass parameters with long names.

Published: August 23, 2010; 6:00:03 PM -0400
V3.x:(not available)
V2.0: 9.3 HIGH
CVE-2010-3107

A certain ActiveX control in ienipp.ocx in the browser plugin in Novell iPrint Client before 5.42 does not properly restrict the set of files to be deleted, which allows remote attackers to cause a denial of service (recursive file deletion) via unspecified vectors related to a "logic flaw" in the CleanUploadFiles method in the nipplib.dll module.

Published: August 23, 2010; 6:00:03 PM -0400
V3.x:(not available)
V2.0: 7.1 HIGH