Intrusion Prevention

Novell.iPrint.Client.Nipplib.IppCreateServerRef.Buffer.Overflow

Description

This indicates an attack attempt against a buffer-overflow vulnerability in Novell iPrint Client.
The vulnerability is caused by an error when certain parameters are passed to the affected ActiveX control. It allows a remote attacker to execute arbitrary code.

Affected Products

Novell iPrint Client 5.06
Novell iPrint Client 5.04
Novell iPrint Client 4.36

Impact

System Compromise

Recommended Actions

Update to the latest versions.
Novell iPrint Client for Windows 4.38:
http://download.novell.com/Download?buildid=3q-_lVDVRFI~
Novell iPrint Client for Windows Vista 5.08:
http://download.novell.com/Download?buildid=dv_yn4TOPmQ~