Title

HP Multiple LaserJet Printers Information Disclosure Vulnerability (Cat I impact)

Discussion

Hewlett-Packard has released a security bulletin addressing a vulnerability affecting various HP LaserJet printers. To exploit this vulnerability, an attacker would send a malicious URI request to an affected system. If successfully exploited, this vulnerability would allow an attacker to gain access to sensitive information. At this time, there are no known exploits associated with this vulnerability; USCYBERCOM is not aware of any DoD related incidents. HP LaserJet Printers PJL Directory Traversal Vulnerability - (CVE-2010-4107): A potential security vulnerability has been identified with HP LaserJet MFP printers, HP Color LaserJet MFP printers, and certain HP LaserJet printers. The vulnerability could be exploited remotely to gain unauthorized access to files.

Check Content

See the IAVM notice and vendor bulletin for additional information. Vulnerable Applications/Systems: HP LaserJet MFP printers (all models with Printer Job Language (PJL) support) HP Color LaserJet MFP printers (all models with Printer Job Language (PJL) support) HP LaserJet 4100 series HP LaserJet 4200 series HP LaserJet 4300 series HP LaserJet 5100 series HP LaserJet 8150 series HP LaserJet 9000 series Note: System administrators should refer to the HP Security Bulletin to determine affected applications/system and appropriate fix actions. Implementation of the recommended mitigation will constitute compliance with this IAVB. Vendor Recommended Mitigation Files within the printer can be accessed using the Printer Job Language (PJL) interface to exploit a directory traversal vulnerability. The vulnerability can be avoided by either one of the following actions: ? disable file system access via the PJL interface ? set a PJL password

Fix Text

Additional Identifiers

Rule ID:

Vulnerability ID: V-25868

Group Title:

Expert Comments

CCIs tied to check.

Controls tied to check. These are derived from the CCIs shown above.