DarkFiber Consulting – IT Managed Services

Novell Releases Update for iPrint Vulnerability

September 4th, 2008 . by DarkFiber Consulting

Novell has released an update to address multiple vulnerabilities in iPrint. These vulnerabilities are due to the following:

  • multiple buffer overflow conditions within the Novell iPrint ActiveX control (ienipp.ocx)
  • multiple buffer overflow conditions within nipplib.dll
  • an insecure “GetFileList()” method

Exploitation of this vulnerability may allow an attacker to execute arbitrary code or obtain sensitive information.

DarkFiber Consulting encourages users to review Novell documents 5034540 and 5034560 and apply any necessary updates.