CVE-2010-3107

A certain ActiveX control in ienipp.ocx in the browser plugin in Novell iPrint Client before 5.42 does not properly restrict the set of files to be deleted, which allows remote attackers to cause a denial of service (recursive file deletion) via unspecified vectors related to a "logic flaw" in the CleanUploadFiles method in the nipplib.dll module.

CVSS v2.0 7.1 HIGH

7.1^/10

CVSS v2.0 : HIGH

Vector : AV:N/AC:M/Au:N/C:N/I:N/A:C

Exploitability : 8.6 / Impact : 6.9

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact COMPLETE

References

Link	Resource
http://dvlabs.tippingpoint.com/advisory/TPTI-10-05	Patch
http://download.novell.com/Download?buildid=ftwZBxEFjIg~	Patch
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12074

Advertisement

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:novell:iprint:4.32:::::::*
	cpe:2.3:a:novell:iprint:4.34:::::::*
	cpe:2.3:a:novell:iprint:5.12:::::::*
	cpe:2.3:a:novell:iprint::::::::
	cpe:2.3:a:novell:iprint:4.36:::::::*
	cpe:2.3:a:novell:iprint:4.38:::::::*
	cpe:2.3:a:novell:iprint:4.26:::::::*
	cpe:2.3:a:novell:iprint:4.27:::::::*
	cpe:2.3:a:novell:iprint:5.04:::::::*
	cpe:2.3:a:novell:iprint:5.30:::::::*
	cpe:2.3:a:novell:iprint:4.28:::::::*
	cpe:2.3:a:novell:iprint:5.20b:::::::*
	cpe:2.3:a:novell:iprint:5.32:::::::*
	cpe:2.3:a:novell:iprint:4.30:::::::*

Information

Published : 2010-08-23 15:00

Updated : 2017-09-18 18:31

NVD link : CVE-2010-3107

Mitre link : CVE-2010-3107

JSON object : View

CWE

CWE-264

Permissions, Privileges, and Access Controls

Advertisement

Products Affected

novell

iprint

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://dvlabs.tippingpoint.com/advisory/TPTI-10-05", "name": "http://dvlabs.tippingpoint.com/advisory/TPTI-10-05", "tags": ["Patch"], "refsource": "MISC"}, {"url": "http://download.novell.com/Download?buildid=ftwZBxEFjIg~", "name": "http://download.novell.com/Download?buildid=ftwZBxEFjIg~", "tags": ["Patch"], "refsource": "CONFIRM"}, {"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12074", "name": "oval:org.mitre.oval:def:12074", "tags": [], "refsource": "OVAL"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "A certain ActiveX control in ienipp.ocx in the browser plugin in Novell iPrint Client before 5.42 does not properly restrict the set of files to be deleted, which allows remote attackers to cause a denial of service (recursive file deletion) via unspecified vectors related to a \"logic flaw\" in the CleanUploadFiles method in the nipplib.dll module."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "CWE-264"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2010-3107", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 7.1, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:C", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "MEDIUM", "availabilityImpact": "COMPLETE", "confidentialityImpact": "NONE"}, "severity": "HIGH", "impactScore": 6.9, "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": true}}, "publishedDate": "2010-08-23T22:00Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:novell:iprint:4.32:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:novell:iprint:4.34:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:novell:iprint:5.12:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:novell:iprint:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "5.40"}, {"cpe23Uri": "cpe:2.3:a:novell:iprint:4.36:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:novell:iprint:4.38:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:novell:iprint:4.26:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:novell:iprint:4.27:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:novell:iprint:5.04:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:novell:iprint:5.30:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:novell:iprint:4.28:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:novell:iprint:5.20b:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:novell:iprint:5.32:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:novell:iprint:4.30:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2017-09-19T01:31Z"}