63 matches found
September 14, 2021—KB5005627 (Security-only update)
September 14, 2021—KB5005627 Security-only update Summary Learn more about this security update, including improvements and fixes, any known issues, and how to get the update. Important: Windows 8.1 and Windows Server 2012 R2 have reached the end of mainstream support and are now in extended...
September 14, 2021—KB5005566 (OS Build 18363.1801)
September 14, 2021—KB5005566 OS Build 18363.1801 EXPIRATION NOTICE As of 9/12/2023, KB5005566 is only available from Windows Update. This update is no longer available from the Microsoft Update Catalog, or other release channels. We recommend that you update your devices to the latest security...
September 14, 2021—KB5005615 (Security-only update)
September 14, 2021—KB5005615 Security-only update Summary Learn more about this security update, including improvements and fixes, any known issues, and how to get the update. Important: Windows 7 and Windows Server 2008 R2 have reached the end of mainstream support and are now in extended suppor...
Windows Remote Code Execution Vulnerability
A remote code execution vulnerability exists when Microsoft Windows fails to properly handle cabinet files. To exploit the vulnerability, an attacker would have to convince a user to either open a specially crafted cabinet file or spoof a network printer and trick a user into installing a malicio...
RICOH Printer Detection (SNMP)
SNMP based detection of RICOH printer devices. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if description...
Microsoft Windows: Devices: Prevent users from installing printer drivers
This test checks the setting for policy OpenVAS Vulnerability Test $Id: windevicespreventusersprinterdrivers.nasl 11532 2018-09-21 19:07:30Z cfischer $ Check value for Devices: Prevent users from installing printer drivers Authors: Emanuel Moss Copyright: Copyright c 2018 Greenbone Networks GmbH,...
CyberArk Viewfinity 5.5.10.95 - Local Privilege Escalation
CyberArk Viewfinity 5.5.10.95 - Local Privilege Escalation Exploit Title: Privilege Escalation via CyberArk Viewfinity 8. This will spawn a new CMD prompt. Verify you are now Admin...
Windows remote code execution vulnerability: June 13, 2017
Windows remote code execution vulnerability: June 13, 2017 Summary A remote code execution vulnerability exists when Microsoft Windows fails to properly handle cabinet files. To exploit the vulnerability, an attacker would have to convince a user to either open a specially crafted cabinet file or...
Windows Remote Code Execution Vulnerability
A remote code execution vulnerability exists when Microsoft Windows fails to properly handle cabinet files. To exploit the vulnerability, an attacker would have to convince a user to either open a specially crafted cabinet file or spoof a network printer and trick a user into installing a malicio...
PRET - Printer Exploitation Toolkit
PRET is a new tool for printer security testing developed in the scope of a Master's Thesis at Ruhr University Bochum. It connects to a device via network or USB and exploits the features of a given printer language. Currently PostScript, PJL and PCL are supported which are spoken by most laser...
Printer Exploitation Toolkit: PRET
Printer Exploitation Toolkit PRET is a new tool for printer security testing developed in the scope of a Master’s Thesis at Ruhr University Bochum. PRET connects to a device via network or USB and exploits the features of a given printer language. Currently PostScript , PJL and PCL are supported...
Tektronix Phaser Network Printer 740/750/750DP/840/930 PhaserLink Webserver Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/806/info Certain versions of the Tektronix PhaserLink printer ship with a webserver designed to help facilitate configuration of the device. This service is essentially administrator level access as it can completely modi...
system-config-printer: possible arbitrary code execution in pysmb.py due to improper escaping of hostnames
pysmb.py in system-config-printer 0.6.x and 0.7.x, as used in foomatic-gui and possibly other products, allows remote SMB servers to execute arbitrary commands via shell metacharacters in the 1 NetBIOS or 2 workgroup name, which are not properly handled when searching for network printers...
Do not scan printers (AppSocket)
The remote host appears to be a network printer or multi-function device that supports the AppSocket also known as JetDirect protocol. Such devices often react very poorly when scanned - some crash, others print a number of pages. To avoid problems, Nessus has marked the remote host as 'Dead' and...
HP Web JetAdmin 6.5 Server Arbitrary Command Execution
This module abuses a command execution vulnerability within the web based management console of the Hewlett-Packard Web JetAdmin network printer tool v6.2 - v6.5. It is possible to execute commands as SYSTEM without authentication. The vulnerability also affects POSIX systems, however at this sta...
Stack overflow
Stack-based buffer overflow in AppKit in Apple Mac OS X 10.4.11 allows user-assisted remote attackers to cause a denial of service application termination and execute arbitrary code via a crafted PostScript Printer Description PPD file that is not properly handled when querying a network printer...
CVE-2008-0997
Stack-based buffer overflow in AppKit in Apple Mac OS X 10.4.11 allows user-assisted remote attackers to cause a denial of service application termination and execute arbitrary code via a crafted PostScript Printer Description PPD file that is not properly handled when querying a network printer...
CVE-2008-0997
CVE-2008-0997 : A stack-based buffer overflow in AppKit on Apple Mac OS X 10.4.11 can be exploited by a crafted PostScript Printer Description (PPD) file when querying a network printer, enabling a user-assisted remote attacker to terminate the application or execute arbitrary code. Affected soft...
CVE-2008-0997
Stack-based buffer overflow in AppKit in Apple Mac OS X 10.4.11 allows user-assisted remote attackers to cause a denial of service application termination and execute arbitrary code via a crafted PostScript Printer Description PPD file that is not properly handled when querying a network printer...
AppSocket Half-open Connection Remote DoS
It seems that it is possible to lock out your printer from the network by opening a few connections and keeping them open. Note that the AppSocket protocol is so crude that Nessus cannot check if it is really running behind this port. C Tenable Network Security, Inc. include"compat.inc"; if...