You are here

V-210: HP LaserJet Pro Printer Bug Lets Remote Users Access Data

August 3, 2013 - 2:37am

Addthis

PROBLEM:

A vulnerability was reported in HP Printers. A remote user can obtain potentially sensitive information.

PLATFORM:

HP LaserJet Pro products

ABSTRACT:

A potential security vulnerability has been identified with certain HP LaserJet Pro printers. The vulnerability could be exploited remotely to gain unauthorized access to data.

REFERENCE LINKS:

SecurityTracker Alert ID 1028869
CVE-2013-4807 
Vendor URL

IMPACT ASSESSMENT:

Medium

DISCUSSION: 

The following models are affected:
 
HP LaserJet Pro P1102w CE657A/CE658A
HP LaserJet Pro P1606dn CE749A
HP LaserJet Pro M1212nf MFP CE841A
HP LaserJet Pro M1213nf MFP CE845A
HP LaserJet Pro M1214nfh MFP CE842A
HP LaserJet Pro M1216nfh MFP CE843A
HP LaserJet Pro M1217nfw MFP CE844A
HP LaserJet Pro M1218nfs MFP B4K88A
HP LaserJet Pro CP1025nw CE914A/CE918A.

IMPACT:

Disclosure of system information

SOLUTION:

The vendor has issued a fix (firmware 2013-07-26, Version:20130703)

Addthis