Buffer overflow in Microsoft Windows

CVE-2011-4187

Buffer overflow in the GetDriverSettings function in nipplib.dll in Novell iPrint Client before 5.78 on Windows allows remote attackers to execute arbitrary code via a long realm field, a different vulnerability than CVE-2011-3173.

Vulnerability class: Buffer Overflow

EPSS: 0.173 (95.2th percentile) — read the EPSS interpretation.

Affected products

Microsoft Windows
Novell Iprint — versions 4.26, 4.27, 4.28
N/a — versions n/a

Weakness classification (CWE)

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer

References

cve@mitre.org (x_refsource_CONFIRM, Vendor Advisory)
cve@mitre.org (x_refsource_CONFIRM)