SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Device (Printer)  >   Lexmark Printer Vendors:   Lexmark
Lexmark Laser Printer FTP Service Flood Protection Error Lets Remote Users Deny Service
SecurityTracker Alert ID:  1023734
SecurityTracker URL:  http://securitytracker.com/id/1023734
CVE Reference:   CVE-2010-0618   (Links to External Site)
Date:  Mar 24 2010
Impact:   Denial of service via network
Fix Available:  Yes  Vendor Confirmed:  Yes  Exploit Included:  Yes  
Version(s): Various
Description:   A vulnerability was reported in Lexmark Printer. A remote user can cause denial of service conditions.

A remote user can establish passive FTP connections that time out, causing the FTP flood protection mechanism to become permanently enabled, causing denial of service conditions on the target printer. A power reset is required to return the device to normal operations.

Several laser printer models are affected.

The vendor was notified on January 6, 2010.

Francis Provencher of Protek Research Lab's reported this vulnerability.

Impact:   A remote user can cause denial of service conditions on the target printer.
Solution:   The vendor has issued a fix.

The vendor's advisory is available at:

http://support.lexmark.com/index?page=content&id=TE85

Vendor URL:  support.lexmark.com/index?page=content&id=TE85 (Links to External Site)
Cause:   State error

Message History:   None.


 Source Message Contents

Subject:  {PRL} Lexmark Multiple Laser printer FTP Remote Denial of Services

#####################################################################################

Application:   Lexmark Multiple Laser Printer FTP Remote Denial of Services

Platforms:   Lexmark Multiple Laser printer

Exploitation:   Remote Exploitable

CVE Number:   CVE-2010-0618

Discover Date:   2010-01-06

Author:   Francis Provencher (Protek Research Lab's)

Website:   http://www.protekresearchlab.com


#####################################################################################

1) Introduction
2) Report Timeline
3) Technical details
4) Products affected
5) The Code

#####################################################################################

=================
1) Introduction
=================

Lexmark specializes in printers and printer accessories. Its current
range of products includes color and monochrome laser printers and
inkjet printers, both of which may include scanners (including
all-in-one devices with faxing and copying capabilities and photo
printers), and dot matrix printers. Lexmark was one of the first
companies to release wifi inkjet printers and the very first to
release printers with a web-enabled touchscreen, coming in early
September of 2009. They also offer a wide variety of laser printers
with software solutions for more professional printing environments.

(Wikipedia)

#####################################################################################

====================
2) Report Timeline
====================

2010-01-06  Vendor Contacted
2010-01-09  Vendor Response
2010-01-09  Vendor request a PoC
2010-01-10  PoC is sent to the vendor
2010-01-12  Vendor confirme they received PoC
2010-01-13  Vendor confirm the vulnerability
2010-03-22  Public release of this advisory

#####################################################################################

======================
3) Technical details
======================

Lexmark products have connection flood protection mechanisms that
limit the number of simultaneous network
connections that can be made to the device on most TCP service ports.
(21/FTP 79/Finger, 515/LPD, 631/IPP,
5001, 9100-9104, 9200, 9300, 9400, 9500-9501 & 9600) The FTP service
exception handler does not properly
maintain the state of the flood protection when passive FTP
connections are aborted. Once a sufficient number
of passive FTP connections have timed out (typically 15), the flood
protection is enabled and is never reset.
The flood protection can be reset by resetting the network adapter, or
by power cycling the device.


#####################################################################################

=====================
4) Product affected
=====================

The list is too long, you can found information on the Lexmark web site;

http://support.lexmark.com/alerts


#####################################################################################

=============
5) The Code
=============

No proof of concept code are required.

#####################################################################################
(PRL-2010-02)
 
 


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2022, SecurityGlobal.net LLC