Ivan Rodriguez Almuina

**Name of the Vulnerable Software and Affected Versions** Novell iPrint Client versions prior to 5.64 **Description** The issue is related to a heap-based buffer overflow in the nipplib.dll component. This can be exploited by remote attackers to execute arbitrary code via a crafted `uri` parameter in a `printer-url`. **Recommendations** For versions prior to 5.64, update to version 5.64 or later to resolve the issue. As a temporary workaround, consider restricting access to the `nipplib.dll` component to minimize the risk of exploitation. Avoid using the `uri` parameter in the affected API endpoint until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Novell iPrint Client versions prior to 5.64 **Description** The issue is related to a heap-based buffer overflow in the nipplib.dll component. This can be exploited by remote attackers to execute arbitrary code via a crafted `profile-time` parameter in a `printer-url`. **Recommendations** For versions prior to 5.64, update to version 5.64 or later to resolve the issue. As a temporary workaround, consider restricting access to the `printer-url` API endpoint until the update is applied. Avoid using the `profile-time` parameter in the affected API endpoint until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Novell iPrint Client versions prior to 5.64 **Description** The issue is related to a heap-based buffer overflow in the nipplib.dll component. This can be exploited by remote attackers to execute arbitrary code via a crafted `profile-name` parameter in a `printer-url`. **Recommendations** For versions prior to 5.64, update to version 5.64 or later to resolve the issue. As a temporary workaround, consider restricting access to the `printer-url` endpoint to minimize the risk of exploitation. Avoid using the `profile-name` parameter in the affected endpoint until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Novell iPrint Client versions prior to 5.64 **Description** The issue is related to a heap-based buffer overflow in the nipplib.dll component. This can be exploited by remote attackers to execute arbitrary code via a crafted `file-date-time` parameter in a `printer-url`. **Recommendations** For versions prior to 5.64, update to version 5.64 or later to resolve the issue. As a temporary workaround, consider restricting access to the `nipplib.dll` component to minimize the risk of exploitation. Avoid using the `file-date-time` parameter in the affected `printer-url` until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Novell iPrint Client versions prior to 5.64 **Description** The issue is related to a heap-based buffer overflow in the nipplib.dll component. This can be exploited by remote attackers to execute arbitrary code via a crafted `driver-version` parameter in a `printer-url`. **Recommendations** For versions prior to 5.64, update to version 5.64 or later to resolve the issue. As a temporary workaround, consider restricting access to the `nipplib.dll` component to minimize the risk of exploitation. Avoid using the `driver-version` parameter in the affected `printer-url` until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Novell iPrint Client versions prior to 5.64 **Description** The issue is related to a heap-based buffer overflow in the nipplib.dll component. This can be exploited by remote attackers to execute arbitrary code via a crafted `core-package` parameter in a `printer-url`. **Recommendations** For versions prior to 5.64, update to version 5.64 or later to resolve the issue. As a temporary workaround, consider restricting access to the `nipplib.dll` component to minimize the risk of exploitation. Avoid using the `core-package` parameter in the affected `printer-url` until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Novell iPrint Client versions prior to 5.64 **Description** The issue is related to a heap-based buffer overflow in the nipplib.dll component. This can be exploited by remote attackers to execute arbitrary code via a crafted `client-file-name` parameter in a `printer-url`. **Recommendations** For versions prior to 5.64, update to version 5.64 or later to resolve the issue. As a temporary workaround, consider restricting access to the `nipplib.dll` component to minimize the risk of exploitation. Avoid using the `client-file-name` parameter in the affected API endpoint until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Novell iPrint Client versions prior to 5.64 **Description** The issue is related to a stack-based buffer overflow in the nipplib.dll component. It allows remote attackers to execute arbitrary code via a crafted `iprint-client-config-info` parameter in a `printer-url`. **Recommendations** For versions prior to 5.64, update to version 5.64 or later to resolve the issue. As a temporary workaround, consider restricting access to the `nipplib.dll` component to minimize the risk of exploitation. Avoid using the `iprint-client-config-info` parameter in the affected API endpoint until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Novell iPrint Client versions prior to 5.64 **Description** The issue is related to a stack-based buffer overflow in the nipplib.dll component. It can be exploited by remote attackers through a crafted `op-printer-list-all-jobs` parameter in a `printer-url`. This allows for the execution of arbitrary code. **Recommendations** For versions prior to 5.64, update to version 5.64 or later to resolve the issue. As a temporary workaround, consider restricting access to the `printer-url` API endpoint to minimize the risk of exploitation. Avoid using the `op-printer-list-all-jobs` parameter in the affected API endpoint until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Novell iPrint Client versions prior to 5.64 **Description** The issue is related to a stack-based buffer overflow in the nipplib.dll component. This can be exploited by remote attackers through a crafted `op-printer-list-all-jobs` cookie, potentially allowing the execution of arbitrary code. **Recommendations** For versions prior to 5.64, update to version 5.64 or later to resolve the issue. As a temporary workaround, consider restricting access to the `op-printer-list-all-jobs` cookie to minimize the risk of exploitation.