Novell iPrint Client ActiveX Control Multiple Remote Vulnerabilities

Novell iPrint Client ActiveX Control Multiple Remote Vulnerabilities

Novell iPrint Client ActiveX control is prone to multiple buffer-overflow vulnerabilities and an information-disclosure issue.

An attacker can exploit these issues by tricking a victim into viewing a malicious page. A successful memory-corruption attack will allow attacker-supplied code to run in the context of the currently logged-in user. Failed attempts may result in a crash. Remote attackers may also carry out information-disclosure attacks to obtain potentially sensitive information.

These issues affect iPrint Client 4.36 and 5.04.