Canon Mf237w 安全漏洞

i-SENSYS MF237w is a 4-in-1 multifunction laser printer from Canon for small offices. i-SENSYS MF237w 06.07 is vulnerable to an information disclosure. The vulnerability stems from improper handling of inconsistent length parameters by the IPv4/ICMPv4 component. An attacker could exploit the...

CVE-2020-25890

The web application of Kyocera printer ECOSYS M2640IDW is affected by Stored XSS vulnerability, discovered in the addition a new contact in "Machine Address Book". Successful exploitation of this vulnerability can lead to session hijacking of the administrator in the web application or the...

Cross site scripting

The web application of Kyocera printer ECOSYS M2640IDW is affected by Stored XSS vulnerability, discovered in the addition a new contact in "Machine Address Book". Successful exploitation of this vulnerability can lead to session hijacking of the administrator in the web application or the...

CVE-2020-25890

The web application of Kyocera printer ECOSYS M2640IDW is affected by Stored XSS vulnerability, discovered in the addition a new contact in "Machine Address Book". Successful exploitation of this vulnerability can lead to session hijacking of the administrator in the web application or the...

CVE-2020-25890

CVE-2020-25890 affects the Kyocera ECOSYS M2640IDW web application. The vulnerability is a Stored XSS flaw discovered when adding a new contact in the "Machine Address Book." Successful exploitation can lead to administrator session hijacking or execution of unwanted actions within the web app. T...

The vulnerability of the Parus-Budget unified information system for government management, related to buffer overflows, allows an attacker to execute arbitrary code on the client side.

The vulnerability of the unified information system for government management, Parus-Budget, is related to buffer overflow attacks. Exploiting this vulnerability allows a malicious actor to execute arbitrary code on the client side by adding a printer with a name longer than 254 characters...

The vulnerability of the Parus-Budget unified information system for government management, related to insufficient verification of input data, allows a perpetrator to execute arbitrary codes.

The vulnerability of the unified information system for government management, Parus-Budget, is related to insufficient verification of input data. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code by filling the buffer with incorrect port names from the printe...

Canon Oce ColorWave 3500 Security Breach

The Canon Oce ColorWave 3500 is a color printer from Canon Japan. The device is based on solid ink bead printing technology and image logic scanning processing, integrating CAD, GIS and full-coverage, full-color image printing in a single device to provide more professional functionality for the...

Microsoft Windows/Windows Server Elevation of Privilege Vulnerability (CNVD-2021-66111)

Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation USA Microsoft Windows is an operating system for personal devices Microsoft Windows Server is a server operating system. An elevation of privilege vulnerability exists in the Microsoft Windows/Windows Server...

Microsoft Windows Local Spooler Bypass Vulnerability

Windows: Local Spooler CVE-2020-1337 Bypass One way of exploiting this on Windows 10 2004 is to understand that FileNormalizedNameInformation will fail if the new path after the mount point is not under the root directory of the server. For example the admin$ share points to c:\windows. If you se...

Canon Inkjet Extended Survey Program 5.1.0.8 - (IJPLMSVC.EXE) - Unquoted Service Path Vulnerability

Exploit Title: Canon Inkjet Extended Survey Program 5.1.0.8 - 'IJPLMSVC.EXE' - Unquoted Service Path Discovery by: Carlos Roa Vendor Homepage: https://www.usa.canon.com/internet/portal/us/home Tested Version: 5.1.0.8 Vulnerability Type: Unquoted Service Path Tested on OS: Windows 7 Professional 6...

Citrix UPD Finder - CTXUPDINFO

CTXUPDINFO.EXE Created Date: 8/29/2014 Updated Date: 10/03/2014 Where to download ? Certain legacy Citrix tools are now available on request only. Please submit the request here - https://forms.gle/obA39PEz5qpDiSPq8 Once we verify your request, we will provide access to the download location...

StressPrinters

Please note: You can download the required file from the Citrix downloads website by visiting the following link:https://www.citrix.com/downloads/citrix-tools StressPrinters Version 1.3.2 Created date: 03/30/2006 Modified date: 6/19/2013 Description Many printer driver problems in Terminal...

A week in security (October 26 – November 1)

We had a very busy week at Malwarebytes Labs. We offered advice on Googles patch for an actively exploited zero-day bug that affects Chrome users, our podcast talked about finding consumer value in Cybersecurity Awareness Month with Jamie Court, we provided guidance about keeping ransomware cash...

[SECURITY] Fedora 32 Update: lout-3.40-18.fc32

Lout is a document formatting system designed and implemented by Jeffrey Kingston at the Basser Department of Computer Science, University of Sydney, Australia. The system reads a high-level description of a document similar in style to LaTeX and produces a PostScript file which can be printed on...

PT-2022-8861 · Linux +3 · Linux Kernel +3

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A vulnerability was found in the Linux kernel, where accessing a deallocated instance in printer ioctl occurs because it tries to access a printer dev instance that had been freed by...

HP printer issue on Mac: What happened?

Apple holds the keys to nearly all recent Mac software. This is a story of those keys, and how a Hewlett Packard HP error caused problems for a lot of people. Code signing and certificates First, its important to understand that when I say "keys," what I really mean is "certificates." These...

HPSBPI03693 rev. 1 - Certain HP OfficeJet Printers, Remote Denial of Service (DoS)

Potential Security Impact Denial of Service DOS Source: HP, HP Product Security Response Team PSRT Reported by: MT-SRG and VARAS VULNERABILITY SUMMARY HP has identified a potential security vulnerability with certain HP OfficeJet printers. The vulnerability could be exploited remotely to create a...

freerdp: out-of-bounds read in irp functions

In FreeRDP before 2.1.0, there is an out-of-bound read in irp functions parallelprocessirpcreate, serialprocessirpcreate, driveprocessirpwrite, printerprocessirpwrite, rdpeirecvpdu, serialprocessirpwrite. This has been fixed in 2.1.0...

June 16, 2020—KB4567513 (OS Build 17763.1294)

June 16, 2020—KB4567513 OS Build 17763.1294 IMPORTANT We have been evaluating the public health situation and understand the impact this is having on many of our customers. To help ease some of the burdens customers are facing, we are going to delay the scheduled end of service date for the Home,...