Opium OPI Server and CyanPrintIP Denial-of-Service and Format-String Vulnerabilities

vendor:

Opium OPI Server and CyanPrintIP

by:

SecurityFocus

7.5

CVSS

HIGH

Denial-of-Service and Format-String Vulnerabilities

119, 134

CWE

Product Name: Opium OPI Server and CyanPrintIP

Affected Version From: 4.10.1028

Affected Version To: 4.10.1030

Patch Exists: Yes

Related CWE: N/A

CPE: N/A

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2008

Opium OPI Server and CyanPrintIP Denial-of-Service and Format-String Vulnerabilities

Opium OPI Server and CyanPrintIP are prone to a denial-of-service vulnerability and a format-string vulnerability. An attacker can exploit these issues to execute arbitrary code within the context of the affected application or crash the application, denying service to legitimate users.

Mitigation:

Upgrade to the latest version of the affected software.

Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/27734/info

Opium OPI Server and CyanPrintIP are prone to a denial-of-service vulnerability and a format-string vulnerability.

An attacker can exploit these issues to execute arbitrary code within the context of the affected application or crash the application, denying service to legitimate users.

These issues affect the following products:

Opium OPI Server 4.10.1028 and prior
cyanPrintIP Easy OPI 4.10.1028 and prior
cyanPrintIP Professional 4.10.1030 and prior
cyanPrintIP Workstation 4.10.936 and prior
cyanPrintIP Standard 4.10.940 and prior
cyanPrintIP Basic 4.10.1030 and prior

https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/31148.zip