Check Point Advisories

Update Protection against Novell iPrint Client ActiveX Control Multiple Vulnerabilities

Check Point Reference: CPAI-2008-236
Date Published: 14 Nov 2008
Severity: Medium
Last Updated: Tuesday 01 January, 2008
Source: Secunia: SA30667
Industry Reference:CVE-2008-2431
Protection Provided by:
Who is Vulnerable? Novell iPrint Client prior to 4.38
Novell iPrint Client for Windows Vista prior to 5.08
Vulnerability Description Multiple Vulnerabilities have been reported in Novell iPrint Client. Novell iPrint Client is an application that allows users to install and manage printers, or submit print job from a web browser. Novell iPrint Client is bundled with a set of ActiveX controls that implement various functions. Multiple buffer overflow vulnerabilities can be triggered by supplying crafted arguments to the affected iPrint Client ActiveX controls. Successful exploitation might lead to injection and execution of arbitrary code.
Vulnerability StatusThe vulnerability has been publicly disclosed.
Update/Patch AvaliableThe vendor has release patches:

Novell iPrint Client for Windows 4.38:
http://download.novell.com/Download?buildid=3q-_lVDVRFI~

Novell iPrint Client for Windows Vista 5.08:
http://download.novell.com/Download?buildid=dv_yn4TOPmQ~

 

Protection Overview

×
  Feedback
This website uses cookies for its functionality and for analytics and marketing purposes. By continuing to use this website, you agree to the use of cookies. For more information, please read our Cookies Notice.
OK