88 matches found
Design/Logic Flaw
Multiple unspecified vulnerabilities in HP Web Jetadmin 10.2, when a remote SQL server is used, allow remote attackers to obtain access to data or cause a denial of service, possibly by leveraging authentication and encryption weaknesses on the SQL server...
CVE-2009-4182
Multiple unspecified vulnerabilities in HP Web Jetadmin 10.2, when a remote SQL server is used, allow remote attackers to obtain access to data or cause a denial of service, possibly by leveraging authentication and encryption weaknesses on the SQL server...
CVE-2009-4182
Multiple unspecified vulnerabilities in HP Web Jetadmin 10.2, when a remote SQL server is used, allow remote attackers to obtain access to data or cause a denial of service, possibly by leveraging authentication and encryption weaknesses on the SQL server...
CVE-2009-4182
HP Web Jetadmin 10.2 and later uses a remote SQL Server and is affected by multiple vulnerabilities that can allow remote unauthorized access to data and DoS. The root cause involves authentication and encryption weaknesses on the SQL server and insufficient network protections, per HP/SRT bullet...
HPSBPI02500 SSRT090263 rev.2 - HP Web Jetadmin, Remote Unauthorized Access to Data, Denial of Service (DoS)
Potential Security Impact Remote unauthorized access to data, Denial of Service DoS VULNERABILITY SUMMARY Potential security vulnerabilities have been identified with HP Web Jetadmin. The vulnerabilities could be exploited remotely to gain unauthorized access to data or to create a Denial of...
HP WEB JETADMIN Denial of Service (CVE-2004-1856)
HP Web JetAdmin is an enterprise tool that allows administrator to install, configure, and administer Hewlett Packard as well as non-HP peripherals, such as a printer, through a web-based interface. There are three separate vulnerabilities within HP Web JetAdmin that will allow a malicious attack...
HP Web JetAdmin 6.5 Server Arbitrary Command Execution
This module abuses a command execution vulnerability within the web based management console of the Hewlett-Packard Web JetAdmin network printer tool v6.2 - v6.5. It is possible to execute commands as SYSTEM without authentication. The vulnerability also affects POSIX systems, however at this sta...
HP Web JetAdmin 6.5 (connectedNodes.ovpl) Remote Root Exploit
No description provided by source. !/usr/bin/perl use IO::Socket; This is an exploit for HP Web JetAdmin, the printer management server from HP. It is NOT about printers! The service usually runs on port 8000 on Windows, Solaris or Linux boxes. Greetz: The Phenoelit People, c-base crew, EEyE rock...
HPSBPI02265 SSRT3515 rev.2 - Re-release of HPSBMI00004 HP Jetdirect Running ftp, Advisory
Potential Security Impact Advisory VULNERABILITY SUMMARY Some security scanners generate warnings that the Jetdirect ftp directory is writable. RESOLUTION To restrict printing or suppress the security scanners warning, the ftp service can be disabled. To disable ftp, telnet to the Jetdirect devic...
HPSBPI01026 SSRT2397 rev.3 - HP Web Jetadmin, Remote Unauthorized Access, Denial of Service (DoS)
Potential Security Impact Remote unauthorized access to files, Denial of Service DoS VULNERABILITY SUMMARY A potential vulnerability has been identified with HP Web Jetadmin. The vulnerability could be exploited to allow remote unauthorized access to files or to create a Denial of Service DoS...
HPSBPI01078 SSRT4739 rev.3 - HP Web Jetadmin, Remote Execution of Arbitrary Commands
Potential Security Impact Remote execution of arbitrary commands VULNERABILITY SUMMARY A potential vulnerability has been identified with HP Web Jetadmin. The vulnerability could be remotely exploited resulting in the execution of arbitrary commands on the system running HP Web Jetadmin...
HPSBPI01007 SSRT4700 rev.3 - HP Web Jetadmin, Remote Unauthorized Access to Files, Denial of Service (DoS)
Potential Security Impact Remote unauthorized access to files, Denial of Service DoS VULNERABILITY SUMMARY A potential vulnerability has been identified with HP Web Jetadmin. The vulnerability could be exploited to allow remote unauthorized access to files or to create a Denial of Service DoS...
HP Jet Admin 6.5 or less Vulnerability
The remote HP Web Jetadmin is vulnerable to multiple exploits. This includes, but is not limited to, full remote administrative access. An attacker can execute code remotely with SYSTEM level or root privileges by invoking the ExecuteFile function. To further exacerbate this issue, there is worki...
HP Jet Admin 7.x Directory Traversal
The remote HP Web JetAdmin suffers from a number of vulnerabilities. The current running version is vulnerable to a directory traversal attack via the setinfo.hts script. SPDX-FileCopyrightText: 2004 wirepair Some text descriptions might be excerpted from a referenced sources, and are Copyright C...
Hewlett-Packard Web Jetadmin <= 6.5 Multiple Vulnerabilities
The remote Hewlett-Packard Web Jetadmin is vulnerable to multiple exploits. This includes, but is not limited to, full remote administrative access. SPDX-FileCopyrightText: 2004 facq Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right...
CVE-2004-1857
Directory traversal vulnerability in setinfo.hts in HP Web Jetadmin 7.5.2546 allows remote authenticated attackers to read arbitrary files via a .. dot dot in the setinclude parameter...
CVE-2004-1858
HP Web Jetadmin 7.5.2546 is affected by CVE-2004-1858, where remote attackers can cause a denial of service (crash) through a malformed request, attributed to a likely stricmp() misuse involving the "$" character. The available documents identify the affected product and the general impact but do...
CVE-2004-1857
HP Web Jetadmin 7.x (tested on v7.5.2546) is affected by a directory traversal vulnerability in the setinfo.hts script, exploitable via the setinclude parameter to read arbitrary files outside the web root. This requires a remote authenticated attacker to trigger the flaw. No explicit fix/version...
CVE-2004-1858
HP Web Jetadmin 7.5.2546 allows remote attackers to cause a denial of service crash via a malformed request, possibly due to a stricmp error from an invalid use of the "$" character...
CVE-2004-1856
CVE-2004-1856 affects HP Web JetAdmin 7.5.2546; the vulnerability is in devices_update_printer_fw_upload.hts, where, with no password configured, an attacker can remotely upload arbitrary files to the printer directory. This is a remote code/file upload issue that could lead to unauthorized modif...