Novell iPrint Client 'ienipp.ocx' ActiveX Control Buffer Overflow Vulnerability
Severity: : Critical
CVE Kennungen: : CVE-2008-0935
Advisory Date: 21 lipca 2015
DESCRIPTION
Stack-based buffer overflow in the Novell iPrint Control ActiveX control in ienipp.ocx in Novell iPrint Client before 4.34 allows remote attackers to execute arbitrary code via a long argument to the ExecuteRequest method.
INFORMATION EXPOSURE
Apply associated Trend Micro DPI Rules.
SOLUTION
Trend Micro Deep Security DPI Rule Number: 1001825
Trend Micro Deep Security DPI Rule Name: 1001825 - Microsoft Internet Explorer Novell iPrint Client ActiveX Control ExecuteRequest Buffer Overflow
AFFECTED SOFTWARE AND VERSION:
- Novell iPrint 4.32
- Novell iPrint Client 4.26
- Novell iPrint Client 4.32