Skip to main content

Global Business Jet Market: Industry Analysis and Forecast 2021-2027

Serious flaws in six printer brands discovered, fixed

There are many ways to compromise company data, but IT teams often overlook one of the most serious: the humble printer. It sits in the corner, happily humming away as it churns out sensitive company documents, but it’s a small computer with the ability to spit out hard copy. These things have an increasingly large attack surface and are often connected to the internet, awaiting remote commands.

 

Researchers at security company NCC Group took a closer look at printer security and discovered serious flaws in six popular printer brands that could allow attackers to take over accounts or comb through company documents. The opportunities for printer pwnage are many and varied – the researchers found several classes of bugs that recurred across many of these devices.

 

Buffer overflows were a common problem – especially critical because they could allow for remote code execution (RCE). These flaws would often show up in the printers’ Internet Printing Protocol (IPP) service, which lets clients submit and query print jobs. IPP is an IP-based protocol that can run locally or over the internet. They were also often common in the Line Printer Daemon (LPD) protocol, an older service also used to accept and control print jobs remotely. A maliciously crafted network packet is often enough to take control.

 

Another serious bug was the lack of an account lockout, enabling attackers to figure out local account credentials by brute-forcing the device, which is where you automatically try password after password until you get lucky. Lexmark, Ricoh, and Xerox printers contained this flaw.

 

Most modern printers feature HTML and JavaScript-based administrative interfaces, making cross-site scripting (XSS) bugs a common occurrence in the NCC Group tests. These could enable an attacker to hijack the administrator’s session in the printer’s web application. Cross-side request forgery (CSRF) attacks could allow attackers to inject code into these interfaces, and in some cases take over an account.

 

Some Brother printers had a critical heap overflow bug in their IPP implementation, and a stack buffer overflow flaw in their cookie-handling code. Both of these were RCE bugs. NCC Group found multiple vulnerabilities in several HP printers, including cross-site scripting and buffer overflow flaws.

 

Kyocera printers had buffer overflows in their web servers, IPP services, and LPD services, along with a critical broken access control bug allowing unauthorised access to printer configuration settings, including user details and some passwords.

 

The printers also had several other less severe bugs, including XSS and CSRF flaws, and a path traversal vulnerability that allowed attackers to check for the existence of files on the printer and then retrieve them.

 

The researchers found six classes of vulnerability across dozens of Lexmark printer models. The most serious was a set of overflow bugs that allowed specially crafted requests to the printer’s web server to execute arbitrary code on the system, closely followed by the account lockout flaw.

 

The rest of the Lexmark bugs ranged from a denial of service vulnerability in SNMP, through information disclosure bugs and XSS flaws. The information disclosure bugs could leak sensitive operational and configuration data to an unauthenticated user, they warned.

 

Four Ricoh printers shared several bugs, including critical buffer overflows in the IPP service, the HTTP cookie header and parameter parsing, and LPD service. An information disclosure bug led to the disclosure of operating system memory.

 

Ricoh devices also featured several flaws unique to that brand in the NCC Group tests. Their design exposed a hardware serial connector to attackers with physical access to the machines, which could give them full control of the printers. The company also hardcoded FTP credentials into some of its printers’ firmware, allowing attackers to read information on the device’s FTP folders.

 

Xerox printers suffered from critical buffer overflows in their implementations of Google Cloud Print and IPP, and in their web servers. These could all lead to remote code execution or denial of service attacks. They also exhibited XSS and CSRF bugs.

The vendors have all patched these vulnerabilities so make sure you have the latest updates. This news highlights the importance of auditing and hardening this part of your IT ecosystem. When was the last time you patched your printer firmware and checked its configuration?

 

Comments

Popular posts from this blog

How lead generation has become a boon for businesses?

Be it a small or a large organization, lead generation is a service that is bringing business to all the companies. Lead generation is actually the blood in the vein of all organizations and giving a meaning even to run businesses. People who are aware of this service. Very good for you, but a lot of you must be thinking what exactly is this Lead generation and the Leads? Well, lead can be anyone,(typically a curious customer) who is interested in your service or product or looking for it already. A lead can come through various sources, like website, business page, word of mouth or even a call. It is the most important aspect of online marketing and helps in developing curiosity among people for your services and products so that they come running to you to buy them. Now when we know what lead is now it’s time to know why it’s so important in today’s businesses? Do you know the majority of salespeople are losing their will thinking that why they are not getting more customers? why th

Best Psychic In Paris | Best Psychic Reading Specialist in Paris

Guruji who had abilities altogether dimensions of astrology aptitudes. The Best Psychic in Paris through his understanding and learning on Astrology has helped a big number of his customers keep it up with a glad life. You will totally depend upon astrologer for his proposals. He will examine your horoscope outline, the planetary positions, their impact and you will mention your issues with him. He will provides a total account all of your issues whether its issues identified with hitched life, love connections, or on the off chance that you simply are confronting any medical issues, then forth. Our Guruji who is that the Best psychic reader can lookout of any issue of his customer and has been constantly fruitful. It is safe to mention that you simply are having a harsh time in your life and urgently need direction. Guruji psychic reader is strictly, what you would like. He is a mystic perusing proficient, with numerous long periods of involvement in her field. Through her capacities,

Global Tablet Market: Industry Analysis and Forecast 2021-2027

  Global Tablet Market . The report will give the past market trends from 2015-2020 and forecast from 2021 to 2027 by considering 2020 a differently. The report forecast that market for Tablet will reach to XX Bn by 2027 and has given the regional break up by countries.   Get Free Sample Report: https://www.maximizemarketresearch.com/request-sample/115033 The report has covered the market drivers and different strategies implemented by key players for expansion and to retain their client base by focusing on market leaders, market followers and new entrants in the market or region. The drivers of the market and revenue of each key players in each segment are analysed to give deep insights in brief to make user understand the market scenario in less time. While forecasting for each year, rational behind forecast are given that are supposed to drive or restrain the market. Focus on each players and their sales by unit by brand make this report unique in the industry. The Tablet market fac