Security Vulnerability - Novell iPrint Client Browser Plugin Remote Code Execution Vulnerability

  • 7006676
  • 19-Aug-2010
  • 26-Apr-2012


Novell iPrint Client for Windows


This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of the Novell iPrint Client Browser Plugin. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within handling plugin parameters.


Fix is included in "iPrint Client for Windows XP/Vista/Win7 5.42"


Security Alert

Additional Information

ZDI-CAN-754: "Novell iPrint Client Browser Plugin Remote Code Execution Vulnerability."
This vulnerability was discovered by Ivan Almuina, working with TippingPoint's Zero Day Iniative. CVE-2010-4315.