Ranjivost HP LaserJet pisača i HP Digital Senders uređaja

Otkrivena je ranjivost vezana uz određene HP LaserJet pisače i HP Digital Senders uređaje koju je udaljeni napadač mogao iskoristiti za izvršavanje proizvoljnog programskog koda.

Paket:	HP Digital Sender , HP LaserJet Printers
Operacijski sustavi:	Apple Mac OS X 10, Apple Mac OS X 10.1, Apple Mac OS X 10.2, Apple Mac OS X 10.3, Apple Mac OS X 10.4, Apple Mac OS X 10.5, Apple Mac OS X 10.6, Apple Mac OS X 10.7, Debian Linux 4.0 (etch), Debian Linux 5.0 (lenny), Debian Linux 6.0 (squeeze), Microsoft Windows XP, Microsoft Windows Server 2003, Microsoft Windows Vista, Microsoft Windows Server 2008, Microsoft Windows 7, Nepoznat , openSUSE 10.2, openSUSE 10.3, openSUSE 11.0, openSUSE 11.1, openSUSE 11.2, openSUSE 11.3, openSUSE 11.4, openSUSE 12.1, Red Hat Enterprise Linux 2.1, Red Hat Enterprise Linux 3, Red Hat Enterprise Linux 4, Red Hat Enterprise Linux 5, Red Hat Enterprise Linux 6, Red Hat Linux 7, Red Hat Linux 7.1, Red Hat Linux 7.2, Red Hat Linux 7.3, Red Hat Linux 8.0, Red Hat Linux 9, Sun Solaris 7, Sun Solaris 8, Sun Solaris 9, Sun Solaris 10, SUSE 10, SUSE 11, Ubuntu Linux 11.0, Ubuntu Linux 7.04, Ubuntu Linux 7.10, Ubuntu Linux 8.04, Ubuntu Linux 8.10, Ubuntu Linux 9.04, Ubuntu Linux 9.10, Ubuntu Linux 10.04, Ubuntu Linux 10.10, Ubuntu Linux 11.04, Ubuntu Linux 11.10
Problem:	pogreška u programskoj komponenti
Iskorištavanje:	udaljeno
Posljedica:	podmetanje zlonamjerno oblikovanih datoteka, proizvoljno izvršavanje programskog koda
Rješenje:	zaobilazno rješenje (workaround)
CVE:	CVE-2011-4161
Izvorni ID preporuke:	HPSBPI02728
Izvor:	Hewlett Packard

Problem:
Ranjivost je uzrokovana pogreškom u Remote Firmware Update (RFU) mehanizmu. Za detaljan pregled svih ranjivih uređaja preporuča se čitanje originalne preporuke.
Posljedica:
Udaljeni napadač može iskoristiti navedene nedostatke slanjem posebno oblikovanog zahtjeva na TCP priključak 9100. Rezultat iskorištavanja je mogućnost izvršavanja zlonamjernog programskog koda i instaliranje neispravnih inačica programske podrške za ranjive uređaje.
Rješenje:
Do izdavanja zakrpe korisnicima se preporuča da onemoguće postavku "Printer Firmware Update".

Izvorni tekst preporuke

	
SUPPORT COMMUNICATION - SECURITY BULLETIN

Document ID: c03102449

Version: 1
HPSBPI02728 SSRT100692 rev.1 - Certain HP Printers and HP Digital Senders, Remote Firmware Update Enabled by Default
NOTICE: The information in this Security Bulletin should be acted upon as soon as possible.

Release Date: 2011-11-30

Last Updated: 2011-11-30

Potential Security Impact: Remote firmware update enabled by default

Source: Hewlett-Packard Company, HP Software Security Response Team
VULNERABILITY SUMMARY

A potential security vulnerability has been identified with certain HP printers and HP digital senders. The vulnerability could be exploited remotely to install unauthorized printer firmware.

References: CVE-2011-4161
SUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed.
HP LaserJet Enterprise 500 color M551
HP LaserJet Enterprise 600 M601
HP LaserJet Enterprise 600 M602
HP LaserJet Enterprise 600 M603
HP Color LaserJet 3000
HP LaserJet P3005
HP LaserJet Enterprise P3015
HP LaserJet M3035
HP Color LaserJet CP3505
HP Color LaserJet CP3525
HP Color LaserJet CM3530
HP Color LaserJet 3800
HP Color LaserJet CP4005
HP LaserJet P4014
HP LaserJet P4015
HP LaserJet 4240
HP LaserJet 4250
HP LaserJet 4345 MFP
HP LaserJet 4350
HP LaserJet P4515
HP Color LaserJet Enterprise CP4520
HP Color LaserJet Enterprise CP4525
HP Color LaserJet CM4540 MFP
HP LaserJet Enterprise M4555 MFP
HP Color LaserJet 4700
HP Color LaserJet 4730 MFP
HP Color LaserJet CM4730 MFP
HP LaserJet M5035
HP LaserJet 5200
HP Color LaserJet CP5525
HP Color LaserJet 5550
HP Color LaserJet CP6015
HP Color LaserJet CM6030
HP Color LaserJet CM6040
HP CM8060 Color MFP with Edgeline
HP LaserJet 9040
HP LaserJet M9040
HP LaserJet 9050
HP LaserJet M9050
HP Digital Sender 9200c
HP Digital Sender 9250c
HP Color LaserJet 9500
BACKGROUND

For a PGP signed version of this security bulletin please write to: Ova e-mail adresa je zaštićena od spambota. Potrebno je omogućiti JavaScript da je vidite.

CVSS 2.0 Base Metrics
Reference
	
Base Vector
	
Base Vector
CVE-2011-4161
	
(AV:N/AC:L/Au:N/C:C/I:C/A:C)
	
10.0

Information on CVSS is documented in HP Customer Notice: HPSN-2008-002.

Note: For further information on Secure Printing and Imaging please refer to http://www.hp.com/go/secureprinting

Remote Firmware Update (RFU): The Remote Firmware Update (RFU) feature is enabled by default. A firmware update can be sent remotely to port 9100 without authentication. This could allow unauthorized modification of the device firmware. The unauthorized firmware could impact the confidentiality and integrity of data sent to and received from the device. The unauthorized firmware could also cause a Denial of Service (DoS) to the device.
RESOLUTION

It is recommended that the device be secured as described in the document below, including disabling the â

Ranjivost HP LaserJet pisača i HP Digital Senders uređaja

Tražilica portala

Aktivnosti

O CIS-u

Posljednje vijesti

Posljednji dokumenti

Ranjivost HP LaserJet pisača i HP Digital Senders uređaja

Tražilica portala

Aktivnosti

O CIS-u

Posljednje sigurnosne preporuke

Posljednje vijesti

Popularni članci

Posljednji dokumenti