Lexmark Printer Software 代码问题漏洞

Lexmark Printer Software is a printer driver from Lexmark USA. A security vulnerability exists in Lexmark Printer Software that originates from registry entries having unreferenced service paths, and the Lexmark Printer Software G2, G3, and G4 installers have a privileged vulnerable local upgrade...

Lexmark Printer Software G2 Installation Package 1.8.0.0 - (LM__bdsvc) Unquoted Service Path

Exploit Title: Lexmark Printer Software G2 Installation Package 1.8.0.0 - 'LMbdsvc' Unquoted Service Path Exploit Author: Julio Aviña Vendor Homepage: https://www.lexmark.com/ Software Link: https://downloads.lexmark.com/downloads/drivers/LexmarkPrinterSoftwareG2InstallationPackage01292021.exe...

Lexmark Printer Software G2 Installation Package 1.8.0.0 - 'LM__bdsvc' Unquoted Service Path

Exploit Title: Lexmark Printer Software G2 Installation Package 1.8.0.0 - 'LMbdsvc' Unquoted Service Path Date: 2021-06-20 Exploit Author: Julio Aviña Vendor Homepage: https://www.lexmark.com/ Software Link:...

Lexmark Printer Software G2 Installation Package 1.8.0.0 Unquoted Service Path

Exploit Title: Lexmark Printer Software G2 Installation Package 1.8.0.0 - 'LMbdsvc' Unquoted Service Path Date: 2021-06-20 Exploit Author: Julio Aviña Vendor Homepage: https://www.lexmark.com/ Software Link:...

Cross site scripting

Lexmark printer MS812 and multiple older generation Lexmark devices have a stored XSS vulnerability in the embedded web server. The vulnerability can be exploited to expose session credentials and other information via the users web browser...

Lexmark Printer CSRF Vulnerability (TE921)

Some Lexmark devices embedded web server contain a cross-site request forgery CSRF attack vulnerability that allows a local account password to be changed without the knowledge of the authenticated user. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a...

Lexmark Printer Detection Consolidation

Consolidation of Lexmark Printer detections. Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Lexmark Printer Detection (Finger)

This script performs a Finger based detection of Lexmark printer devices. Copyright C 2019 Greenbone Networks GmbH SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by th...

Lexmark Printer Shortcut Integrity Vulnerability (CVE-2019-6489)

Certain Lexmark CX, MX, X, XC, XM, XS, and 6500e devices allow remote attackers to erase stored shortcuts. Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

Lexmark Printer Buffer Overflow Vulnerability (CVE-2018-15520)

Multiple Lexmark printers are prone to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Flaws Found in Popular Printer Models

Vulnerabilities in popular printer models made by HP, Dell and Lexmark expose the devices to attackers who can steal passwords, shut down printers and even steal print jobs. Academic researchers at the University Alliance Ruhr on Monday published a series of advisories and an informational wiki...

Lexmark Printer Sensitive Information Disclosure Vulnerability

Lexmark printer is a printer product. An information disclosure vulnerability exists in the Lexmark printer, where failure to properly handle Erase Printer Memory and Erase Hard Disk operations could allow a local attacker to obtain sensitive information by directly reading non-volatile memory...

Lexmark Printer Competitive Conditions Vulnerability

Lexmark printer is a printer product from Lexmark, USA. A competitive condition vulnerability exists in the initialization process of the Lexmark printer. A remote attacker can bypass authentication via incorrect detection of security-jumper state...

CVE-2016-1896

Lexmark printer vulnerability CVE-2016-1896 involves a race condition in the initialization process that allows remote attackers to bypass authentication by exploiting incorrect detection of security-jumper status. Affected devices are Lexmark printers with firmware ATL before ATL.02.049, CB befo...

Unprotected Lexmark Printer (HTTP)

The remote Lexmark Printer is not protected by a password and/or permissions for default users are too lose. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

Lexmark X651de - Printer Ready Message Value HTML Injection

Lexmark X651de - Printer Ready Message Value HTML Injection source: https://www.securityfocus.com/bid/45688/info Lexmark Printer X651de is prone to an HTML-injection vulnerability because it fails to properly sanitize user-supplied input before using it in dynamically generated content. Successfu...

Lexmark Printer Service Detection

Binary data 5779.prm...

Lexmark Printer Detection

The remote host is a Lexmark printer. By querying the device information page, this plugin attempts to identify the model, and various other key software versions such as kernel, engine, base installed on the remote Lexmark device. C Tenable Network Security, Inc. include"compat.inc"; if...

lexmark-xsrf.txt

!/usr/bin/perl ============================================================= Lexmark Laser Printer newagent='Mozilla/4.0 compatible; Windows 5.1'; $link = 'http://'.$ARGV0.'/config/posttest'; $data="GENPASSWORD=".$ARGV1."&GENPASSWORD=".$ARGV1."&GENOPPANELLOCK+0=0"; my $ua = LWP::UserAgent-new; my...

Information disclosure

Unspecified vulnerability in the Lexmark Printer Sharing LexBce Server Service LexPPS, possibly 8.29 and 9.41, allows remote attackers to execute arbitrary code via unspecified vectors. NOTE: This information is based on a vague initial disclosure; details will be updated after the grace period h...