Novell iPrint Client nipplib.dll ActiveX (ienipp.ocx) IppCreateServerRef Function Overflow
High Nessus Plugin ID 34085
SynopsisThe remote Windows host has an application that is affected by a buffer overflow vulnerability.
DescriptionThe installed version of Novell iPrint Client is affected by a buffer overflow vulnerability.
By passing very long arguments to either 'GetPrinterURLList()', 'GetPrinterURLList2()', or 'GetFileList2()' functions available in ActiveX control 'ienipp.ocx', it may be possible to cause a heap-based buffer overflow in function 'IppCreateServerRef()' provided by 'nipplib.dll'.
Successful exploitation of this issue may result in arbitrary code execution on the remote system.
- Novell iPrint Client for Vista 5.08 or
- Novell iPrint Client for Windows 4.38