HP JetDirect PJL - Interface Universal Directory Traversal (Metasploit)

HP JetDirect PJL - Interface Universal Directory Traversal Metasploit Exploit Title: HP JetDirect PJL Interface Universal Path Traversal Date: Aug 7, 2011 Author: Myo Soe Software Link: http://www.hp.com Version: All Tested on: HP LaserJet Pxxxx Series $Id: $ This file is part of the Metasploit...

HP JetDirect PJL - Interface Universal Directory Traversal (Metasploit)

Exploit Title: HP JetDirect PJL Interface Universal Path Traversal Date: Aug 7, 2011 Author: Myo Soe Software Link: http://www.hp.com Version: All Tested on: HP LaserJet Pxxxx Series $Id: $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial...

HP JetDirect PJL Interface Universal Path Traversal

Exploit for hardware platform in category remote exploits Exploit Title: HP JetDirect PJL Interface Universal Path Traversal Date: Aug 7, 2011 Author: Myo Soe Software Link: http://www.hp.com Version: All Tested on: HP LaserJet Pxxxx Series $Id: $ This file is part of the Metasploit Framework and...

HP JetDirect PJL - Query Execution (Metasploit)

HP JetDirect PJL - Query Execution Metasploit Exploit Title: HP JetDirect PJL Query Execution Date: Aug 7, 2011 Author: Myo Soe Software Link: http://www.hp.com Version: All Tested on: HP LaserJet Pxxxx Series $Id: $ This file is part of the Metasploit Framework and may be subject to redistributi...

HP JetDirect PJL Query Execution

Exploit for hardware platform in category remote exploits Exploit Title: HP JetDirect PJL Query Execution Date: Aug 7, 2011 Author: Myo Soe Software Link: http://www.hp.com Version: All Tested on: HP LaserJet Pxxxx Series $Id: $ This file is part of the Metasploit Framework and may be subject to...

HP JetDirect PJL - Query Execution (Metasploit)

Exploit Title: HP JetDirect PJL Query Execution Date: Aug 7, 2011 Author: Myo Soe Software Link: http://www.hp.com Version: All Tested on: HP LaserJet Pxxxx Series $Id: $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the...

Do not scan printers (AppSocket)

The remote host appears to be a network printer or multi-function device that supports the AppSocket also known as JetDirect protocol. Such devices often react very poorly when scanned - some crash, others print a number of pages. To avoid problems, Nessus has marked the remote host as 'Dead' and...

OS Identification : SNMP sysObjectID

The remote operating system can be identified by querying its sysObjectID object using SNMP. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid44344; scriptversion"1.28"; scriptsetattributeattribute:"pluginmodificationdate", value:"2020/04/09"; scriptnameenglish:"OS...

HP printers crossite scripting

Crossite scripting in Jetdirect web interface for LaserJet and Color LaserJet printers...

[security bulletin] HPSBPI02463 SSRT090061 rev.1 - HP LaserJet Printers, HP Color LaserJet Printers, Remote Cross Site Scripting (XSS)

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c01841397 Version: 1 HPSBPI02463 SSRT090061 rev.1 - HP LaserJet Printers, HP Color LaserJet Printers, Remote Cross Site Scripting XSS NOTICE: The information in this Security Bulletin should be...

Directory traversal

Directory traversal vulnerability in the HP JetDirect web administration interface in the HP-ChaiSOE 1.0 embedded web server on the LaserJet 9040mfp, LaserJet 9050mfp, and Color LaserJet 9500mfp before firmware 08.110.9; LaserJet 4345mfp and 9200C Digital Sender before firmware 09.120.9; Color...

CVE-2008-4419

Directory traversal vulnerability in the HP JetDirect web administration interface in the HP-ChaiSOE 1.0 embedded web server on the LaserJet 9040mfp, LaserJet 9050mfp, and Color LaserJet 9500mfp before firmware 08.110.9; LaserJet 4345mfp and 9200C Digital Sender before firmware 09.120.9; Color...

CVE-2008-4419

CVE-2008-4419 concerns a directory traversal vulnerability in the HP-ChaiSOE/1.0 embedded JetDirect web server used by HP LaserJet printers and related devices. The flaw allows remote attackers to read arbitrary files via directory traversal in the URI. The vulnerability affects multiple products...

CVE-2008-4419

Directory traversal vulnerability in the HP JetDirect web administration interface in the HP-ChaiSOE 1.0 embedded web server on the LaserJet 9040mfp, LaserJet 9050mfp, and Color LaserJet 9500mfp before firmware 08.110.9; LaserJet 4345mfp and 9200C Digital Sender before firmware 09.120.9; Color...

Printer Job Language (PJL) Detection

The remote service uses the PJL Printer Job Language protocol and answered to a HP PJL request. This is indicates the remote device is probably a printer running JetDirect. Through PJL, users can submit printing jobs, transfer files to or from the printers, change some settings, etc... This VT ha...

HPSBPI02265 SSRT3515 rev.2 - Re-release of HPSBMI00004 HP Jetdirect Running ftp, Advisory

Potential Security Impact Advisory VULNERABILITY SUMMARY Some security scanners generate warnings that the Jetdirect ftp directory is writable. RESOLUTION To restrict printing or suppress the security scanners warning, the ftp service can be disabled. To disable ftp, telnet to the Jetdirect devic...

HPSBPI02263 SSRT3512 rev.2 - Re-release of HPSBMI0002 HP Jetdirect, Remote Unauthorized Access, Denial of Service (DoS)

Potential Security Impact Remote unauthorized access, Denial of Service DoS VULNERABILITY SUMMARY A potential security vulnerability has been identified with HP Jetdirect. The vulnerability could be exploited to allow remote unauthorized access or to create a Denial of Service DoS. RESOLUTION HP...

Printer Job Language (PJL) Detection

Nessus had detected that the service running on the remote host will answer an HP Printer Job Language PJL request, which indicates that it is a printer device running HP JetDirect. By using the PJL protocol, users can submit printing jobs, transfer files to or from the printer, and change...

Command injection

The FTP service in HP JetDirect print servers allows remote attackers to cause a denial of service engine crash via a RETR command with a long pathname...

CVE-2007-1772

The FTP service in HP JetDirect print servers allows remote attackers to cause a denial of service engine crash via a RETR command with a long pathname...