Format string vulnerability in the ReportSysLogEvent function in the LPD server in cyan soft Opium OPI Server 4.10.1028 and previous versions; cyanPrintIP Easy OPI, Professional, and Basic 4.10.1030 and previous versions; Workstation 4.10.836 and previous versions; and Standard 4.10.940 and previous versions; might allow remote malicious users to execute arbitrary code via format string specifiers in the queue name in a request.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
cyan soft opium4 opi server |
||
cyan soft cyanprintip basic |
||
cyan soft cyanprintip easy opi |
||
cyan soft cyanprintip professional |
||
cyan soft cyanprintip standard |
||
cyan soft cyanprintip workstation |