cpe:/a:novell:iprint:4.38::client CVE-2009-3176 2009-09-11T16:30:01.110-04:00 2010-08-25T01:36:25.100-04:00 9.3 NETWORK MEDIUM NONE COMPLETE COMPLETE COMPLETE http://nvd.nist.gov 2009-09-14T13:21:00.000-04:00 BID 36231 SECUNIA 36579 OSVDB 57922 MISC http://intevydis.com/vd-list.shtml Buffer overflow in the ActiveX control in Novell iPrint Client 4.38 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unknown attack vectors, as demonstrated by a certain module in VulnDisco Pack Professional 8.1, "Novell iPrint Client 4.38 ActiveX exploit." NOTE: as of 20090909, this disclosure has no actionable information. However, because the VulnDisco Pack author is a reliable researcher, the issue is being assigned a CVE identifier for tracking purposes.