TRENDnet Print Server Authentication Bypass Vulnerability Network Vulnerability

Summary

This host is running TRENDnet Print Server and is prone to authentication bypass vulnerability.

Impact

Successful exploitation will allow remote attackers to reset print server to factory settings or changing its IP address without password security check and obtain the sensitive information. Impact Level: Application

Solution

No solution or patch was made available for at least one year since disclosure of this vulnerability. Likely none will be provided anymore. General solution options are to upgrade to a newer release, disable respective features, remove the product or replace the product by another one.

Insight

The flaw is due to a failure of the application to validate authentication credentials when processing print server configuration change requests.

Affected

TRENDnet TE100-P1U Print Server Firmware 4.11

References

http://www.exploit-db.com/exploits/26401

Updated on 2017-03-28

Severity

Classification

CVSS	Base Score: 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

AIOCP 'cp_html2xhtmlbasic.php' Remote File Inclusion Vulnerability
Agora CGI Cross Site Scripting
Athena Web Registration remote command execution flaw
Apache Axis2 Document Type Declaration Processing Security Vulnerability
AproxEngine Multiple Remote Input Validation Vulnerabilities

Take action and discover your vulnerabilities