Bugtraq mailing list archives

Printer Vulnerabilities (Tektronix and JetDirect)

From: aleph1 () SECURITYFOCUS COM (Elias Levy)
Date: Tue, 23 Nov 1999 09:23:57 -0800


I am summarizing a number of replies to the printer vulnerability
threads.

Tektronix:

Vulnerable:

Phaser 360 - Wyman Eric Miles <wymanm () is rice edu>
Phaser 840 - HC Security <securit () online no>
Phaser 780 - "Tim Adams" <TAdams () iwpsd org>

Not Vulnerable:

Phaser 360 - HC Security <securit () online no>

HP JetDirect overflow:

Not Vulnerable:

Firmware Revision G.07.17 - Jens Hektor <hektor () rz rwth-aachen de>

Vulnerable:

JetDirect 300x print server J3263A firmware H.06.00 - olivier Schott <ost () INTRINsec com>

To disable port 80 use the command:

ews-config: 0

If you are using bootp/tftp to configure your printers, you can specify an      allowed IP range in 
/tftpboot/<printer-name>.cfg, like:

        xxx.yyy.zzz.0  255.255.255.0


--
Elias Levy
Security Focus
http://www.securityfocus.com/

Current thread:

Re: Netscape communicator 4.x Javascript security flaw, (continued)
- - - Re: Netscape communicator 4.x Javascript security flaw Metal Hurlant (Nov 26)
    - Re: Netscape communicator 4.x Javascript security flaw Ahmed Ghandour (Nov 26)
    - Windows NT 4.0 Service Pack 6A Breaks IP Forwarding Brendan Howes (Nov 25)
    - Oracle Web Listener Mnemonix (Nov 25)
    - [w00giving '99 #6]: UnixWare 7's Xsco Matt Conover (Nov 25)
    - Re: Operational Issues: Applications & Appliances (was: Buffer Overflow Survey Paper) Mark Seiden (Nov 24)
    - Netscape Communicator 4.7 - Navigator Overflows Mike Boto (Nov 24)
    - BindView Security Advisory: SSR Denial of Service BindView Security Advisory (Nov 24)
    - Re: BindView Security Advisory: SSR Denial of Service Alan Cox (Nov 24)
    - Oracle 8i questions Brock Tellier (Nov 23)
    - Printer Vulnerabilities (Tektronix and JetDirect) Elias Levy (Nov 23)
    - Re: local users can panic linux kernel (was: SuSE syslogd advisory) Darren Reed (Nov 20)
    - Re: local users can panic linux kernel (was: SuSE syslogd advisory) Cy Schubert - ITSD Open Systems Group (Nov 23)
    - Re: local users can panic linux kernel (was: SuSE syslogdadvisory) Jefferson Ogata (Nov 23)
    - Re: local users can panic linux kernel (was: SuSE syslogdadvisory) Shafik Yaghmour (Nov 23)
    - Re: local users can panic linux kernel (was: SuSE syslogdadvisory) Olaf Kirch (Nov 24)
    - Re: local users can panic linux kernel (was: SuSE syslogdadvisory) Goetz Babin-Ebell (Nov 24)
    - more about IP ID antirez () INVECE ORG (Nov 20)
    - FreeBSD sysinstall Jonas Eriksson (Nov 20)
    - Re: local users can panic linux kernel (was: SuSE syslogd advisory) Malcolm Beattie (Nov 22)
    - DNA-1999-001: NetTerm FTP Daemon vulnerabilities Jeremy Iverson (Nov 22)

(Thread continues...)