Re: Tektronix (Xerox) PhaserLink 850 Webserver Vulnerability (NEW )

From: Francis Favorini (francis.favoriniat_private)
Date: Fri Apr 27 2001 - 10:08:49 PDT

Next message: Atro Tossavainen: "Re: IRIX /usr/lib/print/netprint local root symbols exploit."

Previous message: Greg KH: "Immunix OS Security update for gftp"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

From my testing:

Phaser 560
Tektronix Version:  1.01/21	
	Didn't find any variants that worked.

Phaser 740
Firmware Version:  1.24 / 4.08 / 21 / 8.62
	http://printername/ncl_subjects.html works

Phaser 750DP
	Firmware Version
		PostScript: 5.62
		VxWorks: 2.28
		Network: 11.100.11.15.1999
		Engine: 10
	http://printername/_ncl_subjects.shtml works

In both 740 and 750 the password is exposed in plain text for anyone to see.

I suggest not setting a default gateway for the printer's IP configuration.
This should limit the vulnerability to your own subnet.

-Francis

Next message: Atro Tossavainen: "Re: IRIX /usr/lib/print/netprint local root symbols exploit."
Previous message: Greg KH: "Immunix OS Security update for gftp"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 27 2001 - 17:19:21 PDT