Lucene search

MitreCVE-2010-3108

HistoryAug 23, 2010 - 10:00 p.m.

CVE-2010-3108

2010-08-2322:00:03

CWE-119

mitre

web.nvd.nist.gov

cve-2010-3108

buffer overflow

novell iprint client

browser plugin

remote code execution

nvd

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

8.1

Confidence

Low

EPSS

0.029

Percentile

91.0%

JSON

Buffer overflow in the browser plugin in Novell iPrint Client before 5.42 allows remote attackers to execute arbitrary code by using EMBED elements to pass parameters with long names.

Affected configurations

Nvd

Node

novelliprintRange≤5.40

novelliprintMatch4.26

novelliprintMatch4.27

novelliprintMatch4.28

novelliprintMatch4.30

novelliprintMatch4.32

novelliprintMatch4.34

novelliprintMatch4.36

novelliprintMatch4.38

novelliprintMatch5.04

novelliprintMatch5.12

novelliprintMatch5.20b

novelliprintMatch5.30

novelliprintMatch5.32

VendorProductVersionCPE
novelliprint*cpe:2.3:a:novell:iprint:*:*:*:*:*:*:*:*
novelliprint4.26cpe:2.3:a:novell:iprint:4.26:*:*:*:*:*:*:*
novelliprint4.27cpe:2.3:a:novell:iprint:4.27:*:*:*:*:*:*:*
novelliprint4.28cpe:2.3:a:novell:iprint:4.28:*:*:*:*:*:*:*
novelliprint4.30cpe:2.3:a:novell:iprint:4.30:*:*:*:*:*:*:*
novelliprint4.32cpe:2.3:a:novell:iprint:4.32:*:*:*:*:*:*:*
novelliprint4.34cpe:2.3:a:novell:iprint:4.34:*:*:*:*:*:*:*
novelliprint4.36cpe:2.3:a:novell:iprint:4.36:*:*:*:*:*:*:*
novelliprint4.38cpe:2.3:a:novell:iprint:4.38:*:*:*:*:*:*:*
novelliprint5.04cpe:2.3:a:novell:iprint:5.04:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
novell	iprint	*	cpe:2.3:a:novell:iprint::::::::
novell	iprint	4.26	cpe:2.3:a:novell:iprint:4.26:::::::*
novell	iprint	4.27	cpe:2.3:a:novell:iprint:4.27:::::::*
novell	iprint	4.28	cpe:2.3:a:novell:iprint:4.28:::::::*
novell	iprint	4.30	cpe:2.3:a:novell:iprint:4.30:::::::*
novell	iprint	4.32	cpe:2.3:a:novell:iprint:4.32:::::::*
novell	iprint	4.34	cpe:2.3:a:novell:iprint:4.34:::::::*
novell	iprint	4.36	cpe:2.3:a:novell:iprint:4.36:::::::*
novell	iprint	4.38	cpe:2.3:a:novell:iprint:4.38:::::::*
novell	iprint	5.04	cpe:2.3:a:novell:iprint:5.04:::::::*

Rows per page:

1-10 of 141

References

download.novell.com/Download?buildid=ftwZBxEFjIg~

www.zerodayinitiative.com/advisories/ZDI-10-139/

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11915

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

8.1

Confidence

Low

EPSS

0.029

Percentile

91.0%

JSON

Related for CVE-2010-3108