发布日期:2012-02-08
更新日期:2012-06-28
受影响系统:
Novell iPrint Client for Windows 5.77
Novell iPrint Client for Windows 5.76
Novell iPrint Client for Windows 5.75
Novell iPrint Client for Windows 5.74
Novell iPrint Client for Windows 5.73
Novell iPrint Client for Windows 5.72
Novell iPrint Client for Windows 5.64
Novell iPrint Client for Windows 5.56
Novell iPrint Client for Windows 5.52
Novell iPrint Client for Windows 5.44
Novell iPrint Client for Windows 5.32
Novell iPrint Client for Windows 5.30
Novell iPrint Client for Windows 5.08
Novell iPrint Client for Windows 5.06
Novell iPrint Client for Windows 5.04
Novell iPrint Client for Windows 4.38
Novell iPrint Client for Windows 4.36
Novell iPrint Client for Windows 4.34
不受影响系统:
Novell iPrint Client for Windows 5.78
描述:
--------------------------------------------------------------------------------
BUGTRAQ ID: 51926
CVE(CAN) ID: CVE-2011-4186
Novell iPrint是打印解决方案。
Windows平台上Novell iPrint Client 5.78之前版本nipplib.dll在实现上存在堆缓冲区溢出漏洞,通过printer-url中的特制客户端文件名参数,可导致远程执行任意代码。
<*来源:gwslabs.com
*>
建议:
--------------------------------------------------------------------------------
厂商补丁:
Novell
------
目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: