Summary
HP Laserjet printers with JetDirect cards, when configured with TCP/IP, can be configured without a password, which allows remote attackers to connect to the printer and change its IP address or disable logging.
Solution
Connect to this printer via telnet and set a password by executing the 'passwd' command.
References
Updated on 2015-03-25
Severity
Classification
-
CVE CVE-1999-1061 -
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P
Related Vulnerabilities
- Adobe Air Remote Code Execution Vulnerability -June13 (Windows)
- Adobe Acrobat Multiple Unspecified Vulnerabilities -01 Feb13 (Mac OS X)
- Adobe Air Multiple Vulnerabilities - December12 (Mac OS X)
- Adobe AIR Multiple Vulnerabilities(APSB14-24)-(Windows)
- Adobe AIR Multiple Vulnerabilities-01 Aug14 (Mac OS X)