CVE-2010-0618

The flood-protection feature in the base, IPDS DLE, Forms DLE, Barcode DLE, Prescribe DLE, and Printcryption DLE components on certain Lexmark laser and inkjet printers and MarkNet devices allows remote attackers to cause a denial of service TCP outage by making many passive FTP connections and...

Stack overflow

Stack-based buffer overflow in the base, IPDS DLE, Forms DLE, Barcode DLE, Prescribe DLE, and Printcryption DLE components on certain Lexmark laser printers and multi-function printers allows remote attackers to execute arbitrary code or cause a denial of service device hang via a long argument t...

Design/Logic Flaw

The flood-protection feature in the base, IPDS DLE, Forms DLE, Barcode DLE, Prescribe DLE, and Printcryption DLE components on certain Lexmark laser and inkjet printers and MarkNet devices allows remote attackers to cause a denial of service TCP outage by making many passive FTP connections and...

CVE-2010-0618

CVE-2010-0618 affects Lexmark base, IPDS DLE, Forms DLE, Barcode DLE, Prescribe DLE, and Printcryption DLE components on Lexmark laser/inkjet printers and MarkNet devices. The vulnerability arises from a flaw in flood-protection for FTP/passive connections: after many passive FTP sessions are abo...

CVE-2010-0618

The flood-protection feature in the base, IPDS DLE, Forms DLE, Barcode DLE, Prescribe DLE, and Printcryption DLE components on certain Lexmark laser and inkjet printers and MarkNet devices allows remote attackers to cause a denial of service TCP outage by making many passive FTP connections and...

CVE-2010-0619

Stack-based buffer overflow in the base, IPDS DLE, Forms DLE, Barcode DLE, Prescribe DLE, and Printcryption DLE components on certain Lexmark laser printers and multi-function printers allows remote attackers to execute arbitrary code or cause a denial of service device hang via a long argument t...

CVE-2010-0619

CVE-2010-0619 involves a stack-based buffer overflow in Lexmark PJL processing on multiple Lexmark laser printers and MFPs. The vulnerability affects the base, IPDS DLE, Forms DLE, Barcode DLE, Prescribe DLE, and Printcryption DLE components, triggered by a long argument to a PJL INQUIRE command....

Lexmark Laser Printer Stack Overflow

Application: Lexmark Multiple Laser Printer Remote Stack Overflow Platforms: Lexmark Multiple Laser printer Exploitation: Remote Exploitable CVE Number: CVE-2010-0619 Discover Date: 2010-01-06 Author: Francis Provencher Protek Research Lab's Website: http://www.protekresearchlab.com 1 Introductio...

lexmark-config NSE Script

Retrieves configuration information from a Lexmark S300-S400 printer. The Lexmark S302 responds to the NTPRequest version probe with its configuration. The response decodes as mDNS, so the request was modified to resemble an mDNS request as close as possible. However, the port 9100/udp is listed ...

Lexmark Multiple HTTP Servers Denial of Service Vulnerability

No description provided by source. GET / HTTP/1.0\r\n /Host:AAAAAA1024...

lexmark-xsrf.txt

!/usr/bin/perl ============================================================= Lexmark Laser Printer newagent='Mozilla/4.0 compatible; Windows 5.1'; $link = 'http://'.$ARGV0.'/config/posttest'; $data="GENPASSWORD=".$ARGV1."&GENPASSWORD=".$ARGV1."&GENOPPANELLOCK+0=0"; my $ua = LWP::UserAgent-new; my...

Information disclosure

Unspecified vulnerability in the Lexmark Printer Sharing LexBce Server Service LexPPS, possibly 8.29 and 9.41, allows remote attackers to execute arbitrary code via unspecified vectors. NOTE: This information is based on a vague initial disclosure; details will be updated after the grace period h...

CVE-2006-0592

Unspecified vulnerability in the Lexmark Printer Sharing LexBce Server Service LexPPS, possibly 8.29 and 9.41, allows remote attackers to execute arbitrary code via unspecified vectors. NOTE: This information is based on a vague initial disclosure; details will be updated after the grace period h...

CVE-2006-0592

Unspecified vulnerability in the Lexmark Printer Sharing LexBce Server Service LexPPS, possibly 8.29 and 9.41, allows remote attackers to execute arbitrary code via unspecified vectors. NOTE: This information is based on a vague initial disclosure; details will be updated after the grace period h...

CVE-2006-0592

Technical details about CVE-2006-0592 are not publicly provided in the supplied documents. No concrete affected products, root cause, or remediation are disclosed here; monitor for updates.

Code injection

Lexmark X1185 printer allows local users to gain SYSTEM privileges by navigating to the "Appearance" dialog and selecting the "Additional styles skins are available on the Lexmark web site" option, which launches a web browser that is running with SYSTEM privileges...

CVE-2006-0577

Lexmark X1185 printer allows local users to gain SYSTEM privileges by navigating to the "Appearance" dialog and selecting the "Additional styles skins are available on the Lexmark web site" option, which launches a web browser that is running with SYSTEM privileges...

CVE-2006-0577

Lexmark X1185 printer allows local users to gain SYSTEM privileges by navigating to the "Appearance" dialog and selecting the "Additional styles skins are available on the Lexmark web site" option, which launches a web browser that is running with SYSTEM privileges...

CVE-2006-0577

CVE-2006-0577 affects Lexmark X1185 printers. Local users can obtain SYSTEM privileges by opening the printer’s Appearance dialog and selecting the option that references additional skins on the Lexmark website, which launches a web browser running with SYSTEM rights. This is a local, privilege-e...

High Risk Vulnerability in Lexmark Printer Sharing Service

Peter Winter-Smith of NGSSoftware has discovered a high risk vulnerability in the Lexmark Printer Sharing service which could allow a remote, unauthenticated attacker to execute arbitrary code on a Lexmark printer user's computer system with Local System privileges. There is no known official pat...