CVE-2009-1568

Related Files

Novell iPrint Client ActiveX Control target-frame Buffer Overflow

Posted Feb 24, 2010

Authored by jduck | Site metasploit.com

This Metasploit module exploits a stack overflow in Novell iPrint Client 5.30. When passing an overly long string via the "target-frame" parameter to ienipp.ocx an attacker can execute arbitrary code. NOTE: The "operation" variable must be set to a valid command in order to reach this vulnerability.

tags | exploit, overflow, arbitrary

advisories | CVE-2009-1568

SHA-256 | ae1b4e13c905b8425b4ceb4cfcccf97150708024a6a4da135697c9050553c2a0

Download | Favorite | View

Novell iPrint Client ActiveX Control target-frame Buffer Overflow

Posted Feb 6, 2010

Authored by jduck | Site metasploit.com

This Metasploit module exploits a stack overflow in Novell iPrint Client 5.30. When passing an overly long string via the "target-frame" parameter to ienipp.ocx an attacker can execute arbitrary code. NOTE: The "operation" variable must be set to a valid command in order to reach this vulnerability.

tags | exploit, overflow, arbitrary

advisories | CVE-2009-1568

SHA-256 | 2f8085ff43c3d34d0a072cc5968db8e5067ac13f456d0d219eb9a570a2f06338

Download | Favorite | View

Novell iPrint Client "target-frame" Parameter Buffer Overflow

Posted Dec 8, 2009

Authored by Carsten Eiram | Site secunia.com

Secunia Research has discovered a vulnerability in Novell iPrint Client, which can be exploited by malicious people to compromise a user's system. The vulnerability is caused by a boundary error in ienipp.ocx when parsing the "target-frame" parameter and can be exploited to cause a stack-based buffer overflow via an overly long parameter value. Successful exploitation allows execution of arbitrary code when a user e.g. views a malicious web page.

tags | advisory, web, overflow, arbitrary

advisories | CVE-2009-1568

SHA-256 | b4604ef429d5e02dec7ad4fc93d21a10093ecd4a51bd0650e12b69bef2b19eb3

Download | Favorite | View