Skip to main content

Serious flaws in six printer brands discovered, fixed

There are many ways to compromise company data, but IT teams often overlook one of the most serious: the humble printer. It sits in the corner, happily humming away as it churns out sensitive company documents, but it’s a small computer with the ability to spit out hard copy. These things have an increasingly large attack surface and are often connected to the internet, awaiting remote commands.


Researchers at security company NCC Group took a closer look at printer security and discovered serious flaws in six popular printer brands that could allow attackers to take over accounts or comb through company documents. The opportunities for printer pwnage are many and varied – the researchers found several classes of bugs that recurred across many of these devices.


Buffer overflows were a common problem – especially critical because they could allow for remote code execution (RCE). These flaws would often show up in the printers’ Internet Printing Protocol (IPP) service, which lets clients submit and query print jobs. IPP is an IP-based protocol that can run locally or over the internet. They were also often common in the Line Printer Daemon (LPD) protocol, an older service also used to accept and control print jobs remotely. A maliciously crafted network packet is often enough to take control.


Another serious bug was the lack of an account lockout, enabling attackers to figure out local account credentials by brute-forcing the device, which is where you automatically try password after password until you get lucky. Lexmark, Ricoh, and Xerox printers contained this flaw.


Most modern printers feature HTML and JavaScript-based administrative interfaces, making cross-site scripting (XSS) bugs a common occurrence in the NCC Group tests. These could enable an attacker to hijack the administrator’s session in the printer’s web application. Cross-side request forgery (CSRF) attacks could allow attackers to inject code into these interfaces, and in some cases take over an account.


Some Brother printers had a critical heap overflow bug in their IPP implementation, and a stack buffer overflow flaw in their cookie-handling code. Both of these were RCE bugs. NCC Group found multiple vulnerabilities in several HP printers, including cross-site scripting and buffer overflow flaws.


Kyocera printers had buffer overflows in their web servers, IPP services, and LPD services, along with a critical broken access control bug allowing unauthorised access to printer configuration settings, including user details and some passwords.


The printers also had several other less severe bugs, including XSS and CSRF flaws, and a path traversal vulnerability that allowed attackers to check for the existence of files on the printer and then retrieve them.


The researchers found six classes of vulnerability across dozens of Lexmark printer models. The most serious was a set of overflow bugs that allowed specially crafted requests to the printer’s web server to execute arbitrary code on the system, closely followed by the account lockout flaw.


The rest of the Lexmark bugs ranged from a denial of service vulnerability in SNMP, through information disclosure bugs and XSS flaws. The information disclosure bugs could leak sensitive operational and configuration data to an unauthenticated user, they warned.


Four Ricoh printers shared several bugs, including critical buffer overflows in the IPP service, the HTTP cookie header and parameter parsing, and LPD service. An information disclosure bug led to the disclosure of operating system memory.


Ricoh devices also featured several flaws unique to that brand in the NCC Group tests. Their design exposed a hardware serial connector to attackers with physical access to the machines, which could give them full control of the printers. The company also hardcoded FTP credentials into some of its printers’ firmware, allowing attackers to read information on the device’s FTP folders.


Xerox printers suffered from critical buffer overflows in their implementations of Google Cloud Print and IPP, and in their web servers. These could all lead to remote code execution or denial of service attacks. They also exhibited XSS and CSRF bugs.

The vendors have all patched these vulnerabilities so make sure you have the latest updates. This news highlights the importance of auditing and hardening this part of your IT ecosystem. When was the last time you patched your printer firmware and checked its configuration?



Popular posts from this blog

What Is Digital Marketing?

 What Is Digital Marketing? Digital marketing is that the use of the social media, Internet, search engines, mobile devices, and other channels to succeed in consumers. Some consider digital marketing to be entirely new which needs a replacement way of understanding that how customers behave and new ways of approaching the purchasers compared to the normal marketing. Digital Marketing Channels 1. Website Marketing 2. Pay-Per-Click (PPC) Advertising 3.Content Marketing 4.Email Marketing 5.Social Media Marketing 6.Affiliate Marketing 7.Video Marketing 8.SMS Messaging Digital Marketing As A course and Career The Digital Marketing course will transform you into a complete digital marketer with expertise in the top eight digital marketing domains — search engine optimization, social media, pay-per-click, conversion optimization, digital analytics, content, mobile, and email marketing. Fast-track your career in digital marketing today with practical training you can appl
   5 Tips for Guiding Your Child Through an Escape Room   The most distinguishable characteristics of children are how immensely full of energy and curiosity they are! Compared to adults, they are far more willing to start thinking out of the box and be creative. These factors seemingly make them one of the best players to enjoy an escape room experience.    Taking your child to one of the escape rooms in Prescott this weekend can be a memorable experience for them. Visiting the escapades also undeniably offers you one of the best ways to spend quality time with your family. Furthermore, it also allows your child to test their creativity and problem-solving skills and even enhance their motor skills.    Now, while you take your kid to an escape room game anytime soon, here are 5 essential tips that you need to keep in your mind: 1.    Do your homework! It is always better to prepare yourself before entering the escape room game. So, instead of randomly choosing and

Why Science Labs are Important for Students in School?

Science is a subject which allows students to explore and discover new theories. From a small atom to large universe everything is conceptualize with help of science education. But only theoretical knowledge is not sufficient. Practical knowledge is important to increase engagement and knowledge. Science lab is a place for student which functions to magnify deep understanding of theoretical concepts taught in classrooms. By this effective teaching method, students can gain numerous benefits. Ideal Education Point (New Choudhary public school) believes that ‘Child learn in class but understand in laboratories. Laboratories provide a great experience and high degree of knowledge in developing necessary skills for study and research. Science is a little difficult subject than any other therefore it is must for any school to have a science lab. Know the importance of science labs - • Understand difficult aspects One cannot just read the hefty science books and understand all the meaning