HP Printers and Digital Senders Remote Firmware Update Security Bypass Vulnerability
BID:50876
Info
HP Printers and Digital Senders Remote Firmware Update Security Bypass Vulnerability
| Bugtraq ID: | 50876 |
| Class: | Access Validation Error |
| CVE: |
CVE-2011-4161 |
| Remote: | Yes |
| Local: | No |
| Published: | Nov 30 2011 12:00AM |
| Updated: | Jan 25 2014 08:48AM |
| Credit: | Salvatore Stolfo and Ang Cui from Columbia University |
| Vulnerable: |
HP TopShot LaserJet Pro M275 0 HP LaserJet Professional CP5225 Printer 0 HP LaserJet Pro P1606dn 0 HP LaserJet Pro P1102 0 HP LaserJet Pro M1536 Multifunction Printer 0 HP LaserJet Pro M1212nf Multifunction Printer series 0 HP LaserJet Pro M1136 Multifunction Printer series 0 HP LaserJet Pro CP1525 Color Printer 0 HP LaserJet Pro CP1025 Color Printer series 0 HP LaserJet Pro CM1415 Color Multifunction Printer 0 HP LaserJet Pro 400 MFP Color M475 0 HP LaserJet Pro 400 Color M451 0 HP LaserJet Pro 300 Color MFP M375 0 HP LaserJet Pro 300 Color M351 0 HP LaserJet Pro 100 color MFP M175 0 HP LaserJet P4515 0 HP LaserJet P4015 0 HP LaserJet P4014 0 HP LaserJet P3005 0 HP LaserJet P2055 0 HP LaserJet P2035 0 HP LaserJet P1500 Printer series 0 HP LaserJet M9040 0 HP LaserJet M5035 Multifunction Printer 0 HP LaserJet M5025 Multifunction Printer 0 HP LaserJet M4345x MFP 0 HP LaserJet M3035 0 HP LaserJet M3027 0 HP LaserJet M2727 Multifunction Printer 0 HP LaserJet M1522 Multifunction Printer 0 HP LaserJet M1319 Multifunction Printer series 0 HP LaserJet M1120 Multifunction Printer series 0 HP LaserJet Enterprise P3015 0 HP LaserJet Enterprise M4555 0 HP LaserJet Enterprise P3015 HP LaserJet Enterprise M4555 MFP HP LaserJet Enterprise 600 M603 HP LaserJet Enterprise 600 M602 HP LaserJet Enterprise 600 M601 HP LaserJet Enterprise 500 color M551 HP LaserJet 9050 MFP 0 HP LaserJet 9050 0 HP LaserJet 9040mpf 0 HP LaserJet 9040 0 HP LaserJet 5200n 0 HP LaserJet 5200L 0 HP LaserJet 4350 0 HP LaserJet 4350 HP LaserJet 4345 MFP 0 HP LaserJet 4250 0 HP LaserJet 4240 0 HP LaserJet M9050 HP LaserJet M5035 HP LaserJet 5200 HP DS9250c Digital Sender 0 HP Digital Sender 9200C 0 HP Digital Sender 9250c HP Color LaserJet Enterprise CM4540 0 HP Color LaserJet Enterprise CP4525 HP Color LaserJet Enterprise CP4520 HP Color LaserJet CP6015 0 HP Color LaserJet CP5525 0 HP Color LaserJet CP4005n 0 HP Color LaserJet CP3525 Printer 53.031.4 HP Color LaserJet CP3525 Printer 05.059.3 HP Color LaserJet CP3525 Printer 05.058.4 HP Color LaserJet CP3505 0 HP Color LaserJet CP2025 0 HP Color LaserJet CP1510 0 HP Color LaserJet CP1210 Printer series 0 HP Color LaserJet CM6040 0 HP Color LaserJet CM6030 0 HP Color LaserJet CM4730 MFP 0 HP Color LaserJet CM3530 0 HP Color LaserJet CM2320 Multifunction Printer 0 HP Color LaserJet CM1312 Multifunction Printer 0 HP Color LaserJet 9500mfp 0 HP Color LaserJet 5550 HP Color LaserJet 4730 MFP 0 HP Color LaserJet 4700 0 HP Color LaserJet 3800n 0 HP Color LaserJet 3000n 0 HP Color LaserJet 2800 0 HP Color LaserJet CP6015 HP Color LaserJet CP5525 HP Color LaserJet CP3525 HP Color LaserJet CM6040 HP Color LaserJet CM1312nfi HP Color LaserJet 9500 HP Color LaserJet 3000 HP CM8060 Color MFP with Edgeline 0 |
| Not Vulnerable: | |
Discussion
HP Printers and Digital Senders Remote Firmware Update Security Bypass Vulnerability
HP Printers and Digital Senders are prone to a security-bypass vulnerability.
An attacker may leverage the issue to remotely install malicious printer firmware. The unauthorized firmware could also cause a Denial of Service to the device.
HP Printers and Digital Senders are prone to a security-bypass vulnerability.
An attacker may leverage the issue to remotely install malicious printer firmware. The unauthorized firmware could also cause a Denial of Service to the device.
Exploit / POC
HP Printers and Digital Senders Remote Firmware Update Security Bypass Vulnerability
Researchers at Columbia University have created an exploit to demonstrate the issue, however the code is not publicly available.
Researchers at Columbia University have created an exploit to demonstrate the issue, however the code is not publicly available.
Solution / Fix
HP Printers and Digital Senders Remote Firmware Update Security Bypass Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of any more recent information, please mail us at: [email protected].
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of any more recent information, please mail us at: [email protected].
References
HP Printers and Digital Senders Remote Firmware Update Security Bypass Vulnerability
References:
References:
- HP LaserJet Printers and Multifunction Devices - How to Disable Remote Firmwar (HP)
- Exclusive: Millions of printers open to devastating hack attack, researchers say (Red Tape)
- HP Homepage (HP)
- HPSBPI02728 SSRT100692 rev.4 - Certain HP Printers and HP Digital Senders, Remot (HP)
- HPSBPI02728 SSRT100692 rev.5 - Certain HP Printers and HP Digital Senders, Remot (HP)
- [security bulletin] HPSBPI02728 SSRT100692 rev.4 - Certain HP Printers and HP Di ([email protected])
- HPSBPI02728 SSRT100692 rev.1 - Certain HP Printers and HP Digital Senders, Remot (HP)