CVE-2010-1527

Exp

Stack-based buffer overflow in Novell iPrint Client before 5.44 allows remote attackers to execute arbitrary code via a long call-back-url parameter in an op-client-interface-version action.

Published: 2010-08-23 Last update: 2026-04-29 Assigner: [email protected] Source: [email protected]

NVD Status：Modified，CVE State: published

View at NVD, CVE.org, EUVD

Threat Intelligence & Risk Assessment for CVE-2010-1527

EPSS CVSS CWE Exploit-DB Affected

Conclusion & alert: CVE-2010-1527 is rated High Exploit Risk (89.4/100): CVSS Critical severity, with high exploitation likelihood (EPSS 61.15%, 98th percentile). Core evidence: 2 public exploit reference(s) are indexed (Exploit-DB). EPSS rose +2.77% over the last day, indicating growing attacker interest. Mandatory action: Public exploits are available—assess exposure, apply mitigations, and prioritize patching.

Risk is dynamic; we continuously reassess and refresh what is shown on this page as upstream context changes.

Public exploit references (Exploit-DB) for CVE-2010-1527

EDB-ID	Source	Kind	Published	Link
15072	exploit_db	edb	2010-09-21	Exploit-DB ↗
15042	exploit_db	edb	2010-09-19	Exploit-DB ↗

Exploit prediction scoring system (EPSS) score for CVE-2010-1527

EPSS lead: Daily EPSS estimates relative likelihood of exploitation; percentile ranks this CVE among scored vulnerabilities (higher = more severe relative rank).

#	Date	Old EPSS score	New EPSS score	Delta (New - Old)
1	2025-09-16	58.38%	61.15%	+2.77%
2	2025-03-30	63.44%	58.38%	-5.06%
3	2025-03-29	—	63.44%	—

Full EPSS history (20 records total)

Common vulnerability scoring system (CVSS) metrics for CVE-2010-1527

CVSS metrics for this CVE.

Base score	Version	Severity	Vector	Exploitability	Impact	Score source
9.3	2.0	HIGH	`AV:N/AC:M/Au:N/C:C/I:C/A:C` Click to expand Access vector (AV:N) Can be exploited remotely over network reachability. Access complexity (AC:M) Exploitation needs some favorable conditions, but not exceptional ones. Authentication (AU:N) No authentication is required. Confidentiality impact (C:C) Complete confidentiality impact. Integrity impact (I:C) Complete integrity impact. Availability impact (A:C) Complete availability impact.	8.6	10.0	[email protected]

Weakness enumeration for CVE-2010-1527

CWE-119 MITRE ↗

NVD evaluator notes for CVE-2010-1527

Solution: Fix is included in "iPrint Client for Windows XP/Vista/Win7 5.44"

Affected software / configurations for CVE-2010-1527

Vendor	Product	Version	Raw CPE
novell	iprint	<= 5.42	cpe:2.3:a:novell:iprint::::::::
novell	iprint	4.26	cpe:2.3:a:novell:iprint:4.26:::::::*
novell	iprint	4.27	cpe:2.3:a:novell:iprint:4.27:::::::*
novell	iprint	4.28	cpe:2.3:a:novell:iprint:4.28:::::::*
novell	iprint	4.30	cpe:2.3:a:novell:iprint:4.30:::::::*
novell	iprint	4.32	cpe:2.3:a:novell:iprint:4.32:::::::*
novell	iprint	4.34	cpe:2.3:a:novell:iprint:4.34:::::::*
novell	iprint	4.36	cpe:2.3:a:novell:iprint:4.36:::::::*
novell	iprint	4.38	cpe:2.3:a:novell:iprint:4.38:::::::*
novell	iprint	5.04	cpe:2.3:a:novell:iprint:5.04:::::::*
novell	iprint	5.12	cpe:2.3:a:novell:iprint:5.12:::::::*
novell	iprint	5.20b	cpe:2.3:a:novell:iprint:5.20b:::::::*
novell	iprint	5.30	cpe:2.3:a:novell:iprint:5.30:::::::*
novell	iprint	5.32	cpe:2.3:a:novell:iprint:5.32:::::::*
novell	iprint	5.40	cpe:2.3:a:novell:iprint:5.40:::::::*

References for CVE-2010-1527

URL	Tags
http://secunia.com/advisories/40805	Vendor Advisory
http://secunia.com/secunia_research/2010-104/	Vendor Advisory
http://www.novell.com/support/viewContent.do?externalId=7006679	Vendor Advisory
http://www.securityfocus.com/bid/42576
https://exchange.xforce.ibmcloud.com/vulnerabilities/61220
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11973

cvelogic Threat Intelligence