CVE-2008-0755

cyanPrintIP and Opium4 OPI Server < 4.10.1030 - Remote Code Execution via Format String in LPD Queue Name

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-0755. PoCs published by Luigi Auriemma.

AI-analyzed exploit summary The provided text describes a denial-of-service and format-string vulnerability in Opium OPI Server and cyanPrintIP products. It references CVE-2008-0755 but does not include actual exploit code, only a summary of the vulnerability and affected versions.

Description

Format string vulnerability in the ReportSysLogEvent function in the LPD server in cyan soft Opium OPI Server 4.10.1028 and earlier; cyanPrintIP Easy OPI, Professional, and Basic 4.10.1030 and earlier; Workstation 4.10.836 and earlier; and Standard 4.10.940 and earlier; might allow remote attackers to execute arbitrary code via format string specifiers in the queue name in a request.

Exploits (1)

exploitdb WRITEUP VERIFIED

by Luigi Auriemma · textdosmultiple

https://www.exploit-db.com/exploits/31148

View Code ZIP pw:eip

The provided text describes a denial-of-service and format-string vulnerability in Opium OPI Server and cyanPrintIP products. It references CVE-2008-0755 but does not include actual exploit code, only a summary of the vulnerability and affected versions.

Classification

Writeup 90%

Attack Type

Dos

Complexity

Trivial

Reliability

Theoretical

Target: Opium OPI Server 4.10.1028 and prior, cyanPrintIP Easy OPI 4.10.1028 and prior, cyanPrintIP Professional 4.10.1030 and prior, cyanPrintIP Workstation 4.10.936 and prior, cyanPrintIP Standard 4.10.940 and prior, cyanPrintIP Basic 4.10.1030 and prior

No auth needed

Prerequisites: Network access to the affected service

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 16, 2026 Full analysis →