Lucene search

[email protected]CVE-2001-1039

HistoryFeb 02, 2002 - 5:00 a.m.

CVE-2001-1039

2002-02-0205:00:00

[email protected]

web.nvd.nist.gov

cve-2001-1039

jetdirect

jetadmin

password security

telnet interface

remote access.

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.5 High

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

74.1%

JSON

The JetAdmin web interface for HP JetDirect does not set a password for the telnet interface when the admin password is changed, which allows remote attackers to gain access to the printer.

Affected configurations

NVD

Node

hpjetadminMatch4.0

hpjetadminMatch4.1.2

hpjetadminMatch5.1

hpjetadminMatch5.5

hpjetadminMatch5.5.177

hpjetadminMatch5.6

hpjetadminMatch6.0

hpjetadminMatch6.1

hpjetadminMatch6.2

CPENameOperatorVersion
hp:jetadminhp jetadmineq4.0
hp:jetadminhp jetadmineq4.1.2
hp:jetadminhp jetadmineq5.1
hp:jetadminhp jetadmineq5.5
hp:jetadminhp jetadmineq5.5.177
hp:jetadminhp jetadmineq5.6
hp:jetadminhp jetadmineq6.0
hp:jetadminhp jetadmineq6.1
hp:jetadminhp jetadmineq6.2

CPE	Name	Operator	Version
hp:jetadmin	hp jetadmin	eq	4.0
hp:jetadmin	hp jetadmin	eq	4.1.2
hp:jetadmin	hp jetadmin	eq	5.1
hp:jetadmin	hp jetadmin	eq	5.5
hp:jetadmin	hp jetadmin	eq	5.5.177
hp:jetadmin	hp jetadmin	eq	5.6
hp:jetadmin	hp jetadmin	eq	6.0
hp:jetadmin	hp jetadmin	eq	6.1
hp:jetadmin	hp jetadmin	eq	6.2

References

www.securityfocus.com/archive/1/201160

www.securityfocus.com/bid/3132

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.5 High

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

74.1%

JSON

Related for CVE-2001-1039

cvelist1 nvd1