Samba: Server memory information leak over SMB1

An information leak flaw was found in the way SMB1 protocol was implemented by Samba. A malicious client could use this flaw to dump server memory contents to a file on the samba share or to a shared printer, though the exact area of server memory cannot be controlled by the attacker...

Pharos PopUp Printer Client DecodeString Code Execution Vulnerability(CVE-2017-2786)

Summary A denial of service vulnerability exists in the psnotifyd application of the Pharos PopUp printer client version 9.0. A specially crafted packet can be sent to the victim's computer and can lead to an out of bounds read causing a crash and a denial of service. Tested Versions Pharos PopUp...

Pharos PopUp Printer Client memcpy Code Execution Vulnerability(CVE-2017-2787)

Summary A buffer overflows exists in the psnotifyd application of the Pharos PopUp printer client version 9.0. A specially crafted packet can be sent to the victim's computer and can lead to a heap based buffer overflow resulting in potential remote code execution. This client is always listening...

Pharos PopUp Printer Client DecodeBinary Code Execution Vulnerability(CVE-2017-2788)

Summary An exploitable buffer overflow exists in the psnotifyd application of the Pharos PopUp printer client version 9.0. A specially crafted packet can be sent to the victim's computer and can lead to a heap based buffer overflow resulting in remote code execution. This client is always...

Pharos PopUp Printer Client DecodeString Code Execution Vulnerability(CVE-2017-2785)

Summary An exploitable buffer overflow exists in the psnotifyd application of the Pharos PopUp printer client version 9.0. A specially crafted packet can be sent to the victim's computer and can lead to a heap based buffer overflow resulting in remote code execution. This client is always...

Citrix Workspace App for Mac and Linux fail to Redirect Local printer to Citrix Sessions

This article is intended for Citrix administrators and technical teams only. Non-admin users must contact their company’s Help Desk/IT support team and can refer to CTX297149 for more information. Client printers on Mac and Linux clients fail to be created in XenApp and XenDesktop sessions runnin...

CVE-2017-12568

Denial of Service vulnerability in Debut embedded httpd 1.20 in Brother DCP-J132W and probably other DCP models allows remote attackers to hang the printer disrupting its network connection by sending a large amount of HTTP packets...

tcpdump: force printer vulnerability

The force printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via unspecified vectors...

tcpdump: ethernet printer osi_print_cksum() missing sanity checks out-of-bounds read

The osiprintcksum function in print-isoclns.c in the ethernet printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service out-of-bounds read and crash via a crafted 1 length, 2 offset, or 3 base pointer checksum value...

UBUNTU-CVE-2017-11637

GraphicsMagick 1.3.26 has a NULL pointer dereference in the WritePCLImage function in coders/pcl.c during writes of monochrome images...

Debian Security Advisory DSA 3909-1 (samba - security update)

Jeffrey Altman, Viktor Duchovni and Nico Williams identified a mutual authentication bypass vulnerability in samba, the SMB/CIFS file, print, and login server. Also known as Orpheus OpenVAS Vulnerability Test $Id: deb3909.nasl 6800 2017-07-26 06:58:22Z cfischer $ Auto-generated from advisory DSA...

CyberArk Viewfinity 5.5.10.95 - Local Privilege Escalation

CyberArk Viewfinity 5.5.10.95 - Local Privilege Escalation Exploit Title: Privilege Escalation via CyberArk Viewfinity 8. This will spawn a new CMD prompt. Verify you are now Admin...

JVN#95996423: MFC-J960DWN vulnerable to cross-site request forgery

MFC-J960DWN provided by BROTHER INDUSTRIES, LTD. is a MultiFunction Printer. MFC-J960DWN contains a cross-site request forgery vulnerability CWE-352. Impact If a user views a malicious page, unintended operations such as changing settings of the device may be performed. Solution Apply a Workaroun...

Brother Industries MFC-J960DWN Cross-Site Request Forgery Vulnerability

The Brother Industries MFC-J960DWN is a printer from Brother Industries in Japan. A cross-site request forgery vulnerability exists in the Brother Industries MFC-J960DWN using firmware version D and earlier. A remote attacker could exploit this vulnerability to perform unauthorized operations...

June 13, 2017—KB4022726 (Monthly Rollup)

June 13, 2017—KB4022726 Monthly Rollup Improvements and fixes This security update includes improvements and fixes that were a part of update KB4019217 released May 16th, 2017 and resolves the following issues: Addressed issue where, after installing KB3170455 MS16-087, users have difficulty...

June 13, 2017—KB4022717 (Security-only update)

June 13, 2017—KB4022717 Security-only update Improvements and fixes This security update includes quality improvements. No new operating system features are being introduced in this update. Key changes include: Addressed issue where, after installing KB3170455 MS16-087, users have difficulty...

HP Printer Remote Command Execution Vulnerability

The HP OfficeJet Pro 8210 is an all-in-one printer from HP. A remote command execution vulnerability exists in HP printers. The vulnerability allows attackers to execute arbitrary code...

HPSBPI03559 rev 1 - HP Enterprise LaserJet Printers and MFPs, HP OfficeJet Enterprise Color Printers and MFP, HP PageWide Color Printers and MPS, Cross Site Scripting (XSS)

Potential Security Impact Cross Site Scripting XSS Reported by: Jerry Decime VULNERABILITY SUMMARY HP has identified a potential security vulnerability with certain HP printers. The vulnerability could be exploited to perform a cross site scripting XSS attack. RESOLUTION HP has provided firmware...

HP PageWide Printers / HP OfficeJet Pro Printers (OfficeJet Pro 8210) - Arbitrary Code Execution

Create a bind shell on an unpatched OfficeJet 8210 Write a script to profile.d and reboot the device. When it comes back online then nc to port 1270. easysnmp instructions: sudo apt-get install libsnmp-dev pip install easysnmp import socket import sys from easysnmp import snmpset profiledscript =...

Microsoft Windows Multiple Vulnerabilities (KB4022726)

This host is missing a critical security update according to Microsoft KB4022726 SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...