Lucene search

[email protected]CVE-2011-4161

HistoryDec 01, 2011 - 9:55 p.m.

CVE-2011-4161

2011-12-0121:55:00

CWE-264

[email protected]

web.nvd.nist.gov

printer

remote code execution

rfu setting

tcp port 9100

cve-2011-4161

8 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.272 Low

EPSS

Percentile

96.8%

JSON

The default configuration of the HP CM8060 Color MFP with Edgeline; Color LaserJet 3xxx, 4xxx, 5550, 9500, CMxxxx, CPxxxx, and Enterprise CPxxxx; Digital Sender 9200c and 9250c; LaserJet 4xxx, 5200, 90xx, Mxxxx, and Pxxxx; and LaserJet Enterprise 500 color M551, 600, M4555 MFP, and P3015 enables the Remote Firmware Update (RFU) setting, which allows remote attackers to execute arbitrary code by using a session on TCP port 9100 to upload a crafted firmware update.

CPENameOperatorVersion
hp:color_laserjet_enterprise_cp4520hp color laserjet enterprise cp4520eq*
hp:laserjet_m5035hp laserjet m5035eq*
hp:laserjet_enterprise_600hp laserjet enterprise 600eqm603
hp:laserjet_4250hp laserjet 4250eq*
hp:color_laserjet_cp3505hp color laserjet cp3505eq*
hp:color_laserjet_4730hp color laserjet 4730eqmfp
hp:color_laserjet_enterprise_cp4525hp color laserjet enterprise cp4525eq*
hp:laserjet_p3005hp laserjet p3005eq*
hp:laserjet_m9050hp laserjet m9050eq*
hp:laserjet_5200hp laserjet 5200eq*

CPE	Name	Operator	Version
hp:color_laserjet_enterprise_cp4520	hp color laserjet enterprise cp4520	eq	*
hp:laserjet_m5035	hp laserjet m5035	eq	*
hp:laserjet_enterprise_600	hp laserjet enterprise 600	eq	m603
hp:laserjet_4250	hp laserjet 4250	eq	*
hp:color_laserjet_cp3505	hp color laserjet cp3505	eq	*
hp:color_laserjet_4730	hp color laserjet 4730	eq	mfp
hp:color_laserjet_enterprise_cp4525	hp color laserjet enterprise cp4525	eq	*
hp:laserjet_p3005	hp laserjet p3005	eq	*
hp:laserjet_m9050	hp laserjet m9050	eq	*
hp:laserjet_5200	hp laserjet 5200	eq	*

Rows per page:

1-10 of 431

References

h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03102449

isc.sans.org/diary/Hacking+HP+Printers+for+Fun+and+Profit/12112

redtape.msnbc.msn.com/_news/2011/11/29/9076395-exclusive-millions-of-printers-open-to-devastating-hack-attack-researchers-say

secunia.com/advisories/47063

www.kb.cert.org/vuls/id/717921

www.securityfocus.com/bid/51324

www.securitytracker.com/id?1026357

lists.immunityinc.com/pipermail/dailydave/2011-November/000378.html

8 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.272 Low

EPSS

Percentile

96.8%

JSON

Related for CVE-2011-4161

securityvulns3 hp1 cert1 prion1