Linked by Howard Fosdick on Sat 31st Dec 2011 07:57 UTC
Bugs & Viruses Columbia University researchers claim millions of HP printers could be open to remote attack via unsecured Remote Firmware Updates. Cybercriminals could steal personal information or attack otherwise secure networks. HP agrees there is a theoretical security problem but says no customer has ever reported unauthorized printer access. The company denies some of the claims and is still investigating others.
Thread beginning with comment 501781
To view parent comment, click here.
To read all comments associated with this story, please click here.
RE: PJL Issues
by Lennie on Sat 31st Dec 2011 16:11 UTC in reply to "PJL Issues"
Lennie
Member since:
2007-09-22

Funny you should mention SNMP as a workaround.

Because that was mentioned in a video I posted above as a really easy way to break into those printers if I'm not mistaken:

http://www.youtube.com/watch?v=MPhisPLwm2A

Reply Parent Score: 4

RE[2]: PJL Issues
by Gestahlt on Sun 1st Jan 2012 12:05 in reply to "RE: PJL Issues"
Gestahlt Member since:
2011-10-17

Ha! You are right. You can execute PJL code via SNMP. With SNMPv3 we also got some nice security features but most printers have only v2 and for older MFP models only v1.

Reply Parent Score: 2