Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2010-1527Improper Restriction of Operations within the Bounds of a Memory Buffer in Iprint

CWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer5 documents4 sources
Severity
9.3CRITICALNVD
EPSS
61.2%
top 1.68%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
Novell Iprint
Timeline
PublishedAug 23
Latest updateMay 17

Description

Stack-based buffer overflow in Novell iPrint Client before 5.44 allows remote attackers to execute arbitrary code via a long call-back-url parameter in an op-client-interface-version action.

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages1 packages

NVDnovell/iprint5.42+14

🔴Vulnerability Details

2
GHSA
GHSA-26v6-3ggr-9jj5: Stack-based buffer overflow in Novell iPrint Client before 52022-05-17
CVEList
CVE-2010-1527: Stack-based buffer overflow in Novell iPrint Client before 52010-08-23

💥Exploits & PoCs

2
Exploit-DB
Novell iPrint Client - ActiveX Control call-back-url Buffer Overflow (Metasploit)2010-09-21
Exploit-DB
Novell iPrint Client Browser Plugin - 'call-back-url' Remote Stack Overflow2010-09-19
CVE-2010-1527 — Novell Iprint vulnerability | cvebase