Lucene search

[email protected]CVE-2010-4321

HistoryDec 30, 2010 - 7:00 p.m.

CVE-2010-4321

2010-12-3019:00:04

CWE-119

[email protected]

web.nvd.nist.gov

cve-2010-4321

stack-based buffer overflow

novell iprint client

remote code execution

activex control

nvd

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.9 High

AI Score

Confidence

Low

0.406 Medium

EPSS

Percentile

97.3%

JSON

Stack-based buffer overflow in an ActiveX control in ienipp.ocx in Novell iPrint Client 5.52 allows remote attackers to execute arbitrary code via a long argument to (1) the GetDriverSettings2 method, as reachable by (2) the GetDriverSettings method.

Affected configurations

NVD

Node

novelliprint_clientMatch5.52

CPENameOperatorVersion
novell:iprint_clientnovell iprint clienteq5.52

CPE	Name	Operator	Version
novell:iprint_client	novell iprint client	eq	5.52

References

securityreason.com/securityalert/8125

www.exploit-db.com/exploits/16014

www.novell.com/support/viewContent.do?externalId=7007234

www.securityfocus.com/bid/44966

www.zerodayinitiative.com/advisories/ZDI-10-256/

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.9 High

AI Score

Confidence

Low

0.406 Medium

EPSS

Percentile

97.3%

JSON

Related for CVE-2010-4321

cvelist1 prion1 saint8 nessus1 openvas2 nvd1 packetstorm2 zdi1