Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 1999-2018 Tenable Network Security, Inc.PASSWORDLESS_HP_PRINTER.NASL
HistoryJun 22, 1999 - 12:00 a.m.

HP LaserJet Printer Unauthenticated Access

1999-06-2200:00:00
This script is Copyright (C) 1999-2018 Tenable Network Security, Inc.
www.tenable.com
41

0.01 Low

EPSS

Percentile

84.0%

JSON

The remote printer has no password set. This allows anyone to change its IP or potentially to intercept print jobs sent to it.

#
# (C) Tenable Network Security, Inc.
#


include("compat.inc");

if(description)
{
 script_id(10172);
 script_version ("1.29");
 script_cvs_date("Date: 2018/07/24 18:56:11");
 script_cve_id("CVE-1999-1061");

 script_name(english:"HP LaserJet Printer Unauthenticated Access");

 script_set_attribute(attribute:"synopsis", value:
"The remote printer has no password set." );
 script_set_attribute(attribute:"description", value:
"The remote printer has no password set.  This allows anyone to change
its IP or potentially to intercept print jobs sent to it." );
 script_set_attribute(attribute:"solution", value:
"Telnet to this printer and set a password." );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:TF/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

 script_set_attribute(attribute:"plugin_publication_date", value: "1999/06/22");
 script_set_attribute(attribute:"vuln_publication_date", value: "1997/10/04");
script_set_attribute(attribute:"plugin_type", value:"remote");
script_end_attributes();

 script_summary(english:"Notifies that the remote printer has no password");
 script_category(ACT_GATHER_INFO);
 script_copyright(english:"This script is Copyright (C) 1999-2018 Tenable Network Security, Inc.");
 script_family(english:"Misc.");
 script_dependencie("telnetserver_detect_type_nd_version.nasl");
 script_require_ports(23);
 exit(0);
}

#
# The script code starts here
#

include('telnet_func.inc');
passwordless = 0;
port = 23;

banner = get_telnet_banner(port:port);
if ( "JetDirect" >!< banner ) exit(0);
 
if(get_port_state(port))
{
 soc = open_sock_tcp(port);
 if(soc)
 {
  buf = telnet_negotiate(socket:soc);
  if("JetDirect" >< buf){
  	set_kb_item(name:"devices/hp_printer", value:TRUE);
  	buf += recv(socket:soc, length:1024);
	buf = tolower(buf);
	if("password" >!< buf && "username" >!< buf)  passwordless = 1;
	}
 else {
  	buf += recv(socket:soc, length:1024, timeout:2);
	if("JetDirect" >< buf)
	{
	 set_kb_item(name:"devices/hp_printer", value:TRUE);
	 if("password" >!< buf && "username" >!< buf) passwordless = 1;
 	}
      }
   if ( passwordless ) {
# Send '/' to retrieve the current settings
        request = '/\r\n';
	send(socket:soc, data:request);
	info = recv(socket:soc, length: 1024);
	if ( "JetDirect" >< info ) {
		report = '\nIt was possible to obtain the remote printer configuration : ' + info;
	} else {
		report = NULL;
        }
	security_hole(port:port, extra:report);
  }
  close(soc);
 }
}

Related

cve 1
openvas 2
nessus 1
cvelist 1
cve
cve
CVE-1999-1061
2001-09-12 04:00:00
openvas
openvas
HP LaserJet Printers Unauthenticated Access
2012-01-13 00:00:00
HP LaserJet Printers Unauthenticated Access (Telnet)
2012-01-13 00:00:00
nessus
nessus
Lexmark / Dell Printer Unauthenticated Access
2004-05-13 00:00:00
cvelist
cvelist
CVE-1999-1061
2001-09-12 04:00:00

0.01 Low

EPSS

Percentile

84.0%

JSON
Related for PASSWORDLESS_HP_PRINTER.NASL
cve1openvas2nessus1cvelist1