发布日期:2012-02-08
更新日期:2012-06-28
受影响系统:
Novell iPrint Client for Windows 5.77
Novell iPrint Client for Windows 5.76
Novell iPrint Client for Windows 5.75
Novell iPrint Client for Windows 5.74
Novell iPrint Client for Windows 5.73
Novell iPrint Client for Windows 5.72
Novell iPrint Client for Windows 5.64
Novell iPrint Client for Windows 5.56
Novell iPrint Client for Windows 5.52
Novell iPrint Client for Windows 5.44
Novell iPrint Client for Windows 5.32
Novell iPrint Client for Windows 5.30
Novell iPrint Client for Windows 5.08
Novell iPrint Client for Windows 5.06
Novell iPrint Client for Windows 5.04
Novell iPrint Client for Windows 4.38
Novell iPrint Client for Windows 4.36
Novell iPrint Client for Windows 4.34
不受影响系统:
Novell iPrint Client for Windows 5.78
描述:
--------------------------------------------------------------------------------
BUGTRAQ ID: 51926
CVE(CAN) ID: CVE-2011-4187
Novell iPrint是打印解决方案。
Windows平台上Novell iPrint Client 5.78之前版本GetDriverSettings函数在实现上存在缓冲区溢出漏洞,通过超长的realm字段,可导致远程执行任意代码。
<*来源:gwslabs.com
*>
建议:
--------------------------------------------------------------------------------
厂商补丁:
Novell
------
目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: