PT-2012-1820 · Novell · Novell Iprint Server+1

Published

2012-02-02

Updated

2020-02-24

CVE-2011-4194

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Novell Open Enterprise Server 2 (OES2) versions through SP3 on Linux

Description The issue is related to a buffer overflow in the Novell iPrint Server, allowing remote attackers to execute arbitrary code via a crafted attributes-natural-language field.

Recommendations For Novell Open Enterprise Server 2 (OES2) versions through SP3 on Linux, consider disabling the attributes-natural-language field in the Novell iPrint Server until a patch is available. Restrict access to the Novell iPrint Server to minimize the risk of exploitation.

Fix

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

CVE-2011-4194

ZDI-12-031

Affected Products

Novell Open Enterprise Server 2

Novell Iprint Server

PT-2012-1820 · Novell · Novell Iprint Server+1

CVE-2011-4194

Weakness Enumeration

Related Identifiers

Affected Products

References · 3