Command injection

2006-02-1911:02:00

PRIOn knowledge base

www.prio-n.com

7.2 High

AI Score

Confidence

Low

0.056 Low

EPSS

Percentile

93.3%

JSON

Kyocera 3830 (aka FS-3830N) printers have a back door that allows remote attackers to read and alter configuration settings via strings that begin with “!R!SIOP0”, as demonstrated using (1) a connection to to TCP port 9100 or (2) the UNIX lp command.

References

archives.neohapsis.com/archives/fulldisclosure/2006-02/0344.html

evader.wordpress.com/2006/02/16/kyocera-printers/

secunia.com/advisories/18896

www.osvdb.org/23245

www.securityfocus.com/bid/16685

www.vupen.com/english/advisories/2006/0620

exchange.xforce.ibmcloud.com/vulnerabilities/24772