Linked by Howard Fosdick on Sat 31st Dec 2011 07:57 UTC
Bugs & Viruses Columbia University researchers claim millions of HP printers could be open to remote attack via unsecured Remote Firmware Updates. Cybercriminals could steal personal information or attack otherwise secure networks. HP agrees there is a theoretical security problem but says no customer has ever reported unauthorized printer access. The company denies some of the claims and is still investigating others.
Permalink for comment 501780
To read all comments associated with this story, please click here.
RE[2]: Surprised ?
by Lennie on Sat 31st Dec 2011 16:09 UTC in reply to "RE: Surprised ?"
Lennie
Member since:
2007-09-22

Actually, you can't do that with JavaScript. As I mentioned the attacker just places an <img>-tag.

Well, I guess you can do that with JavaScript but it doesn't have any advantage over using an image.

They might use JavaScript to generate a long list of <img>-tags to try different IP-addresses though.

Just sending a longer HTML-page is easy too ofcourse.

So the only thing you are protecting yourself against in this case is an attacker which expects JavaScript to be available and working.

Reply Parent Score: 4