SecurityTracker.com
Keep Track of the Latest Vulnerabilities
with SecurityTracker!
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


Try our Premium Alert Service
 
Sign Up
Sign Up for Your FREE Weekly SecurityTracker E-mail Alert Summary
Instant Alerts
Buy our Premium Vulnerability Notification Service to receive customized, instant alerts
Affiliates
Put SecurityTracker Vulnerability Alerts on Your Web Site -- It's Free!
Partners
Become a Partner and License Our Database or Notification Service





Category:   Device (Printer)  >   HP Printer Vendors:   HPE
(HP Describes Fix) HP LaserJet 4200/4300 Lets Remote Users Update the Firmware With Arbitrary Code
SecurityTracker Alert ID:  1011671
SecurityTracker URL:  http://securitytracker.com/id/1011671
CVE Reference:   GENERIC-MAP-NOMATCH   (Links to External Site)
Date:  Oct 14 2004
Impact:   Modification of system information
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): Various Models
Description:   A vulnerability was reported in the HP LaserJet 4200 and 4300 printers. A remote user can update the printer's firmware with arbitrary code. Other models are also affected.

It is reported that a remote user can send a specially crafted print job to the target printer to cause the printer to update its firmware with arbitrary code. The report indicates that other printers may also be affected.

Serguei Patchkovskii is credited with reporting this flaw.

HP reports that the following models are affected:

HP Color LaserJet 2500, Business InkJet 3000, LaserJet 3700, LaserJet 4100mfp, LaserJet 4200, LaserJet 4300, Color LaserJet 4600, Color LaserJet 4650, Color LaserJet 5500, Color LaserJet 5550, LaserJet 9000, LaserJet 9000mfp, LaserJet 9040mfp, LaserJet 9050, LaserJet 9050mfp, LaserJet 9055, LaserJet 9065, Color LaserJet 9500, Color LaserJet 9500mfp.

Impact:   A remote user can update the printer's firmware with arbitrary code.
Solution:   HP indicates that you can restrict the ability to receive upgrade files by using SNMP to securely configure the printer.

General security advice for printer configuration is described at:

http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=bpj05999

HP indicates that to disable the upgrade capability of the printer via SNMP, set the remote-upgrade-enable object to an integer value of 1:

1.3.6.1.4.1.11.2.3.9.4.2.1.1.20.8.0

remote-upgrade-enable OBJECT-TYPE
SYNTAX INTEGER {
eOff(1),
eOn(2)
}
ACCESS read-write
STATUS mandatory
DESCRIPTION
"Enables or disables the ability to upgrade the firmware
associated with any device that is available to be upgraded. "
::= { upgradable-devices 8 }

Then, to subsequently upgrade the printer, you will need to temporarily set the object to an integer value of 2.

Vendor URL:  www.hp.com/ (Links to External Site)
Cause:   Authentication error

Message History:   This archive entry is a follow-up to the message listed below.
Oct 4 2004 HP LaserJet 4200/4300 Lets Remote Users Update the Firmware With Arbitrary Code



 Source Message Contents



[Original Message Not Available for Viewing]


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

Copyright 2018, SecurityGlobal.net LLC