Update Protection against Novell iPrint Client ienipp.ocx volatile-date-time Parsing Buffer Overflow
| Check Point Reference: | CPAI-2010-126 | |
| Date Published: | ||
| Severity: | ||
| Source: | Secunia Advisory: SA37169 | |
| Industry Reference(s): | CVE-2009-1569 | |
| Protection Provided by: |
IPS-1
|
|
| Who is Vulnerable? Novell iPrint Client 4.38 and prior Novell iPrint Client 5.x prior to 5.32 | ||
| Vulnerability Description A buffer overflow vulnerability exists in Novell iPrint Client, an application that allows users to install and manage printers, or submit print jobs from a web browser. The vulnerability is due to a boundary error when parsing malicious 'persistence' parameter values. A remote attacker can exploit this vulnerability by persuading a target user to open a malicious web page. Successful exploitation could result in remote code execution. |
||
|
Update/Patch Available Novell has released an advisory addressing this vulnerability. |
|
|
Vulnerability Details The vulnerability exists in the Novell iPrint client within the ActiveX control, specifically when handling an overly large persistence parameter value. |
Protection Overview
The protection will detect and block attempts to use specific Novell iPrint client ActiveX class-ids in HTML documents.
To configure the defense, select your product from the list below and follow the related protection steps.