Vulnerability CVE-2010-4107


Published: 2010-11-17   Modified: 2012-02-13

Description:
The default configuration of the PJL Access value in the File System External Access settings on HP LaserJet MFP printers, Color LaserJet MFP printers, and LaserJet 4100, 4200, 4300, 5100, 8150, and 9000 printers enables PJL commands that use the device's filesystem, which allows remote attackers to read arbitrary files via a command inside a print job, as demonstrated by a directory traversal attack.

See advisories in our WLB2 database:
Topic
Author
Date
High
HP JetDirect PJL Query Execution
Myo Soe
08.08.2011

Type:

CWE-22

(Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal'))

Vendor: HP
Product: Laserjet 5100 
Product: 9000 
Product: Laserjet mfp 
Product: Laserjet 4100 
Product: Laserjet 4300 
Product: Laserjet 8150 
Product: Color laserjet mfp 
Product: Laserjet 4200 

CVSS2 => (AV:N/AC:L/Au:N/C:C/I:N/A:N)

CVSS Base Score
Impact Subscore
Exploitability Subscore
7.8/10
6.9/10
10/10
Exploit range
Attack complexity
Authentication
Remote
Low
No required
Confidentiality impact
Integrity impact
Availability impact
Complete
None
None

 References:
http://xforce.iss.net/xforce/xfdb/63261
http://www.vupen.com/english/advisories/2010/2987
http://www.securityfocus.com/bid/44882
http://www.nruns.com/_downloads/SA-2010%20003-Hewlett-Packard.pdf
http://www.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02004333
http://www.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02004333
http://www.exploit-db.com/exploits/15631
http://securitytracker.com/id?1024741
http://securityreason.com/securityalert/8328
http://secunia.com/advisories/42238

Related CVE
CVE-2019-11986
A remote code execution vulnerability was identified in HPE Intelligent Management Center (IMC) PLAT earlier than version 7.3 E0506P09.
CVE-2019-11985
A remote code execution vulnerability was identified in HPE Intelligent Management Center (IMC) PLAT earlier than version 7.3 E0506P09.
CVE-2019-11984
A SQL injection code execution vulnerability was identified in HPE Intelligent Management Center (IMC) PLAT earlier than version 7.3 E0506P09.
CVE-2019-11983
A remote buffer overflow vulnerability was identified in HPE Integrated Lights-Out 4 (iLO 4) earlier than v2.61b for Gen9 servers and Integrated Lights-Out 5 (iLO 5) for Gen10 Servers earlier than version v1.39.
CVE-2019-11982
A remote cross site scripting vulnerability was identified in HPE Integrated Lights-Out 4 (iLO 4) earlier than v2.61b for Gen9 servers and Integrated Lights-Out 5 (iLO 5) for Gen10 Servers earlier than version v1.39.
CVE-2019-11980
A remote code exection vulnerability was identified in HPE Intelligent Management Center (IMC) PLAT earlier than version 7.3 E0506P09.
CVE-2019-11979
A SQL injection code execution vulnerability was identified in HPE Intelligent Management Center (IMC) PLAT earlier than version 7.3 E0506P09.
CVE-2019-11978
A SQL injection code execution vulnerability was identified in HPE Intelligent Management Center (IMC) PLAT earlier than version 7.3 E0506P09.

Copyright 2019, cxsecurity.com

 

Back to Top