Unspecified vulnerability on the HP LaserJet Pro P1102w, P1606dn, M1212nf MFP, M1213nf MFP, M1214nfh MFP, M1216nfh MFP, M1217nfw MFP, M1218nfs MFP, and CP1025nw with firmware prior to 2013-07-26 20130703 allows remote malicious users to modify data via unknown vectors.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
hp laserjet pro cp1025nw firmware 20130703 |
||
hp laserjet pro m1214nfh mfp firmware 20130703 |
||
hp laserjet pro p1606dn firmware 20130212 |
||
hp laserjet pro m1216nfh multifunction printer firmware 20130703 |
||
hp laserjet pro m1213nf mfp firmware 20130703 |
||
hp laserjet pro m1212nf mfp firmware 20130703 |
||
hp laserjet pro m1217nfw multifunction printer firmware 20130703 |
||
hp laserjet pro p1102w firmware 20130703 |
||
hp hotspot laserjet pro m1218nfs mfp firmware 20130703 |
Bad news: Most office bods won't patch it. Good news: Most office bods won't find password
Security flaws in a range of HP printers create a way for hackers to lift administrator's passwords and other potentially sensitive information from vulnerable devices, infosec experts have warned. HP has released patches for the affected LaserJet Pro printers to defend against the vulnerability (CVE-2013-4807), which was discovered by Michał Sajdak of Securitum.pl. Sajdak discovered it was possible to extract plaintext versions of users' passwords via hidden URLs hardcoded into the printers’...