CVE-2009-3176Improper Restriction of Operations within the Bounds of a Memory Buffer in Iprint

CWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer3 documents3 sources
Severity
9.3CRITICALNVD
EPSS
4.8%
top 10.46%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Novell Iprint
Timeline
PublishedSep 11
Latest updateMay 2

Description

Buffer overflow in the ActiveX control in Novell iPrint Client 4.38 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unknown attack vectors, as demonstrated by a certain module in VulnDisco Pack Professional 8.1, "Novell iPrint Client 4.38 ActiveX exploit." NOTE: as of 20090909, this disclosure has no actionable information. However, because the VulnDisco Pack author is a reliable researcher, the issue is being assigned a CVE identifier for tra

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages1 packages

NVDnovell/iprint4.38

🔴Vulnerability Details

2
GHSA
GHSA-gxf5-wh5r-8mfp: Buffer overflow in the ActiveX control in Novell iPrint Client 42022-05-02
CVEList
CVE-2009-3176: Buffer overflow in the ActiveX control in Novell iPrint Client 42009-09-11
CVE-2009-3176 — Novell Iprint vulnerability | cvebase