RSS   Vulnerabilities for 'Mx870 printer'   RSS

2013-06-21
 
CVE-2013-4615

CWE-20
 

 
The Canon MG3100, MG5300, MG6100, MP495, MX340, MX870, MX890, MX920, and MX922 printers allow remote attackers to cause a denial of service (device hang) via a crafted LAN_TXT24 parameter to English/pages_MacUS/cgi_lan.cgi followed by a direct request to English/pages_MacUS/lan_set_content.html. NOTE: the vendor has apparently responded by stating "Canon believes that its printers will not have to deal with unauthorized access to the network from an external location as long as the printers are used in a secured environment."

 
 
CVE-2013-4614

CWE-255
 

 
English/pages_MacUS/wls_set_content.html on the Canon MG3100, MG5300, MG6100, MP495, MX340, MX870, MX890, MX920, and MX922 printers shows the Wi-Fi PSK passphrase in cleartext, which allows physically proximate attackers to obtain sensitive information by reading the screen of an unattended workstation.

 
 
CVE-2013-4613

CWE-264
 

 
The default configuration of the administrative interface on the Canon MG3100, MG5300, MG6100, MP495, MX340, MX870, MX890, MX920, and MX922 printers does not require authentication, which allows remote attackers to modify the configuration by visiting the Advanced page. NOTE: the vendor has apparently responded by stating "for user convenience, the default setting does not require a password. However, if a user has a particular concern about third parties accessing the user's home printer, the default setting can be changed to add a password."

 

 >>> Vendor: Canon 34 Products
Imagerunner 5000i
Imagerunner c3200
Network camera server vb101
Imagerunner 2620
Imagerunner 5020
Imagerunner 6870
Imagerunner 8500
Imagerunner 9070
Imagerunner c3220
Imagerunner c6800
Network camera server vb100
Network camera server vb150
I-sensys
Imagepress
Imagerunner
Mg3100 printer
Mg5300 printer
Mg6100 printer
Mp340 printer
Mp495 printer
Mx870 printer
Mx890 printer
Mx920 printer
Mx922 printer
Pixma mg7500 series inkjet printer
Lbp3370 firmware
Lbp3460 firmware
Lbp6650 firmware
Lbp7750c firmware
Efi printme
Mf210 firmware
Mf220 firmware
Lbp6030w firmware
Lbp7110cw firmware


Copyright 2019, cxsecurity.com

 

Back to Top