Novell Iprint vulnerabilities

CVE-2010-4314 [HIGH] CWE-119 CVE-2010-4314: Remote attackers can use the iPrint web-browser ActiveX plugin in Novell iPrint Client before 5.42 f Remote attackers can use the iPrint web-browser ActiveX plugin in Novell iPrint Client before 5.42 for Windows XP/Vista/Win7 to execute code by overflowing the "name" parameter.

CVE-2013-3708 [MEDIUM] CVE-2013-3708: The id1.GetPrinterURLList function in Novell iPrint Client before 5.93 allows remote attackers to ca The id1.GetPrinterURLList function in Novell iPrint Client before 5.93 allows remote attackers to cause a denial of service via unspecified vectors.

CVE-2013-1091 [CRITICAL] CWE-119 CVE-2013-1091: Stack-based buffer overflow in Novell iPrint Client before 5.90 allows remote attackers to execute a Stack-based buffer overflow in Novell iPrint Client before 5.90 allows remote attackers to execute arbitrary code via unspecified vectors.

CVE-2012-0411 [CRITICAL] CVE-2012-0411: Unspecified vulnerability in Novell iPrint Client before 5.82 allows remote attackers to execute arb Unspecified vulnerability in Novell iPrint Client before 5.82 allows remote attackers to execute arbitrary code via an op-client-interface-version action.

CVE-2011-4187 [CRITICAL] CVE-2011-4187: Buffer overflow in the GetDriverSettings function in nipplib.dll in Novell iPrint Client before 5.78 Buffer overflow in the GetDriverSettings function in nipplib.dll in Novell iPrint Client before 5.78 on Windows allows remote attackers to execute arbitrary code via a long realm field, a different vulnerability than CVE-2011-3173.

CVE-2011-4185 [CRITICAL] CVE-2011-4185: The GetPrinterURLList2 method in the ActiveX control in Novell iPrint Client before 5.78 on Windows The GetPrinterURLList2 method in the ActiveX control in Novell iPrint Client before 5.78 on Windows allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2008-2431 and CVE-2008-2436.

CVE-2011-4186 [CRITICAL] CVE-2011-4186: Heap-based buffer overflow in nipplib.dll in Novell iPrint Client before 5.78 on Windows allows remo Heap-based buffer overflow in nipplib.dll in Novell iPrint Client before 5.78 on Windows allows remote attackers to execute arbitrary code via a crafted client-file-name parameter in a printer-url, a different vulnerability than CVE-2011-1705.

CVE-2011-1701 [CRITICAL] CWE-119 CVE-2011-1701: Heap-based buffer overflow in nipplib.dll in Novell iPrint Client before 5.64 allows remote attacker Heap-based buffer overflow in nipplib.dll in Novell iPrint Client before 5.64 allows remote attackers to execute arbitrary code via a crafted profile-name parameter in a printer-url.

CVE-2011-1703 [CRITICAL] CWE-119 CVE-2011-1703: Heap-based buffer overflow in nipplib.dll in Novell iPrint Client before 5.64 allows remote attacker Heap-based buffer overflow in nipplib.dll in Novell iPrint Client before 5.64 allows remote attackers to execute arbitrary code via a crafted driver-version parameter in a printer-url.

CVE-2011-1707 [CRITICAL] CWE-119 CVE-2011-1707: Stack-based buffer overflow in nipplib.dll in Novell iPrint Client before 5.64 allows remote attacke Stack-based buffer overflow in nipplib.dll in Novell iPrint Client before 5.64 allows remote attackers to execute arbitrary code via a crafted op-printer-list-all-jobs parameter in a printer-url.

CVE-2011-1700 [CRITICAL] CWE-119 CVE-2011-1700: Heap-based buffer overflow in nipplib.dll in Novell iPrint Client before 5.64 allows remote attacker Heap-based buffer overflow in nipplib.dll in Novell iPrint Client before 5.64 allows remote attackers to execute arbitrary code via a crafted profile-time parameter in a printer-url.

CVE-2011-1708 [CRITICAL] CWE-119 CVE-2011-1708: Stack-based buffer overflow in nipplib.dll in Novell iPrint Client before 5.64 allows remote attacke Stack-based buffer overflow in nipplib.dll in Novell iPrint Client before 5.64 allows remote attackers to execute arbitrary code via a crafted op-printer-list-all-jobs cookie.

CVE-2011-1706 [CRITICAL] CWE-119 CVE-2011-1706: Stack-based buffer overflow in nipplib.dll in Novell iPrint Client before 5.64 allows remote attacke Stack-based buffer overflow in nipplib.dll in Novell iPrint Client before 5.64 allows remote attackers to execute arbitrary code via a crafted iprint-client-config-info parameter in a printer-url.

CVE-2011-1699 [CRITICAL] CWE-119 CVE-2011-1699: Heap-based buffer overflow in nipplib.dll in Novell iPrint Client before 5.64 allows remote attacker Heap-based buffer overflow in nipplib.dll in Novell iPrint Client before 5.64 allows remote attackers to execute arbitrary code via a crafted uri parameter in a printer-url.

CVE-2011-1704 [CRITICAL] CWE-119 CVE-2011-1704: Heap-based buffer overflow in nipplib.dll in Novell iPrint Client before 5.64 allows remote attacker Heap-based buffer overflow in nipplib.dll in Novell iPrint Client before 5.64 allows remote attackers to execute arbitrary code via a crafted core-package parameter in a printer-url.

CVE-2011-1702 [CRITICAL] CWE-119 CVE-2011-1702: Heap-based buffer overflow in nipplib.dll in Novell iPrint Client before 5.64 allows remote attacker Heap-based buffer overflow in nipplib.dll in Novell iPrint Client before 5.64 allows remote attackers to execute arbitrary code via a crafted file-date-time parameter in a printer-url.

CVE-2011-1705 [CRITICAL] CWE-119 CVE-2011-1705: Heap-based buffer overflow in nipplib.dll in Novell iPrint Client before 5.64 allows remote attacker Heap-based buffer overflow in nipplib.dll in Novell iPrint Client before 5.64 allows remote attackers to execute arbitrary code via a crafted client-file-name parameter in a printer-url.

CVE-2010-3109 [CRITICAL] CWE-119 CVE-2010-3109: Stack-based buffer overflow in the browser plugin in Novell iPrint Client before 5.42 allows remote Stack-based buffer overflow in the browser plugin in Novell iPrint Client before 5.42 allows remote attackers to execute arbitrary code via a long operation parameter.

CVE-2010-3106 [CRITICAL] CWE-20 CVE-2010-3106: The ienipp.ocx ActiveX control in the browser plugin in Novell iPrint Client before 5.42 does not pr The ienipp.ocx ActiveX control in the browser plugin in Novell iPrint Client before 5.42 does not properly validate the debug parameter, which allows remote attackers to execute arbitrary code or cause a denial of service (stack memory corruption) via a parameter value with a crafted length, related to the ExecuteRequest method.

CVE-2010-3108 [CRITICAL] CWE-119 CVE-2010-3108: Buffer overflow in the browser plugin in Novell iPrint Client before 5.42 allows remote attackers to Buffer overflow in the browser plugin in Novell iPrint Client before 5.42 allows remote attackers to execute arbitrary code by using EMBED elements to pass parameters with long names.