exploit the possibilities
Showing 1 - 1 of 1 RSS Feed

Files

Novell iPrint Client Browser PluginGetDriverFile Uninitialized Pointer Remote Code Execution
Posted Aug 24, 2010
Authored by Aaron Portnoy | Site tippingpoint.com

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of the Novell iPrint client. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific flaw exists within the ienipp.ocx ActiveX control with CLSID 36723f97-7aa0-11d4-8919-FF2D71D0D32C. The function exposes a GetDriverFile method. When this method is invoked for the first time a pointer in the .data section is mapped to an external function within another module. When invoked the second time, the process fails to load the library and assumes the pointer is still valid. When the uninitialized pointer is called the process jumps to an address space easily controlled by an attacker. This can be leveraged to execute remote code under the context of the user running the browser.

tags | advisory, remote, arbitrary, activex
MD5 | 67de327a8f798bba346bfa99edaa6d2f
Page 1 of 1
Back1Next

Top Authors In Last 30 Days

Recent News

News RSS Feed
Evernote Critical Flaw Opened Personal Data Of Millions To Attack
Posted Jun 14, 2019

tags | headline, privacy, flaw, chrome
Spirit Confirms ASCO Industries Cyberattack
Posted Jun 14, 2019

tags | headline, malware, fraud
Symantec Plays Down Unreported Breach Of Test Data
Posted Jun 14, 2019

tags | headline, hacker, data loss, password, symantec
Julian Assange's Extradition Hearing Set For 2020
Posted Jun 14, 2019

tags | headline, government, privacy, usa, britain, data loss, cyberwar, spyware
4 US Agencies Don't Properly Verify Your Data Due To The Equifax Breach
Posted Jun 14, 2019

tags | headline, government, privacy, usa, data loss, fraud, identity theft
JavaScript Template Attacks Expose New Browser Fingerprinting Vectors
Posted Jun 14, 2019

tags | headline, flaw, spyware
High Severity Cisco Flaw In IOS XE Enables Device Takeover
Posted Jun 13, 2019

tags | headline, flaw, cisco
Facebook Emails Seem To Show Zuck Knew Of Privacy Issues
Posted Jun 13, 2019

tags | headline, privacy, email, data loss, facebook
Exim Email Servers Are Now Under Attack
Posted Jun 13, 2019

tags | headline, hacker, privacy, email, flaw
EFF Asks For DOJ Efforts To Break Facebook Encryption To Be Made Public
Posted Jun 13, 2019

tags | headline, government, privacy, usa, spyware, facebook, social, cryptography
View More News →
packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close