Novell : Security Vulnerabilities, CVEs, Published In 2010 CVSS score >= 5
CVE-2010-4321
Public exploit
Stack-based buffer overflow in an ActiveX control in ienipp.ocx in Novell iPrint Client 5.52 allows remote attackers to execute arbitrary code via a long argument to (1) the GetDriverSettings2 method, as reachable by (2) the GetDriverSettings method.
Max CVSS
9.3
EPSS Score
41.48%
Published
2010-12-30
Updated
2011-09-21
CVE-2010-3106
Public exploit
The ienipp.ocx ActiveX control in the browser plugin in Novell iPrint Client before 5.42 does not properly validate the debug parameter, which allows remote attackers to execute arbitrary code or cause a denial of service (stack memory corruption) via a parameter value with a crafted length, related to the ExecuteRequest method.
Max CVSS
9.3
EPSS Score
18.40%
Published
2010-08-23
Updated
2017-09-19
CVE-2010-1527
Public exploit
Stack-based buffer overflow in Novell iPrint Client before 5.44 allows remote attackers to execute arbitrary code via a long call-back-url parameter in an op-client-interface-version action.
Max CVSS
9.3
EPSS Score
93.36%
Published
2010-08-23
Updated
2017-09-19
CVE-2009-4655
Public exploit
The dhost web service in Novell eDirectory 8.8.5 uses a predictable session cookie, which makes it easier for remote attackers to hijack sessions via a modified cookie.
Max CVSS
7.5
EPSS Score
6.74%
Published
2010-02-26
Updated
2017-08-17
4 vulnerabilities found