CVE-2010-3108
Novell iPrint < 5.42 - Remote Code Execution via EMBED Element Parameter
Title source: llmDescription
Buffer overflow in the browser plugin in Novell iPrint Client before 5.42 allows remote attackers to execute arbitrary code by using EMBED elements to pass parameters with long names.
References (3)
Core 3
Core References
Patch x_refsource_misc
http://www.zerodayinitiative.com/advisories/ZDI-10-139/
Patch x_refsource_confirm
http://download.novell.com/Download?buildid=ftwZBxEFjIg~
Third Party Advisory, VDB Entry vdb-entry
signature
x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11915
Scores
EPSS
0.0753
EPSS Percentile
91.9%
Details
CWE
CWE-119
Status
published
Products (14)
novell/iprint
4.26
novell/iprint
4.27
novell/iprint
4.28
novell/iprint
4.30
novell/iprint
4.32
novell/iprint
4.34
novell/iprint
4.36
novell/iprint
4.38
novell/iprint
5.04
novell/iprint
5.12
... and 4 more
Published
Aug 23, 2010
Tracked Since
Feb 18, 2026