Printers Vulnerable To Security Threats

jcatcw writes "Networked printers are more vulnerable to attack than many organizations realize. Symantec has logged vulnerabilities in five brands of network printers. Printers outside firewalls, for ease of remote printing, may also be open to easy remote code execution. They can be possible launching pads for attacks on the rest of the network. Disabling services that aren't needed and keeping up with patches are first steps to securing them." From the article: "Security experts say that printers are loaded with more complex applications than ever, running every vulnerable service imaginable, with little or no risk management or oversight.... [N]etworked printers need to be treated like servers or workstations for security purposes — not like dumb peripherals."

Re:Try it out

[Anonymous Monkey]

What most people don't get is that that cute, slim-line print kit that they slid in the back of there copy machine is, in fact, made out of lap top parts and running DOS. Any multifunction print system is a computer with a printer & scanner attached, and should be treated thusly.

Isn't anything on the network a vulnerability?

[192939495969798999]

I figure it's safer to assume that anything connected to the network could be an attack point. If you have a network toy like some light-up furby that connects to the network and changes color based on packet throughput, that thing probably has no security whatsoever on it (even assuming it has embedded linux or something).

firewall

[bfields]

Printers outside firewalls, for ease of remote printing, may also be open to easy remote code execution.

Unlike, of course, printers behind firewalls, which are not at all open to remote code execution, since there's no chance that anything attached to the firewalled network will ever be hacked. Ah, the magic of the firewall.

Re:Unless...

[AndroidCat]

And if you had some search engine toolbar installed, and printer was visible to the outside, its config page was probably snitched to the rest of the world.

Re:Try it out

[soft_guy]

I really don't get this-- why? Why would you put your printer outside your firewall? So you can print from the internet? What's the point?

The point is that these printers aren't being configured this way on purpose - people plug them and and dick with them randomly until they get a document to physically come out of the printer. Then they walk away from it and never think about it again until it runs out of toner.

Re:firewall

[Anonymous Coward]

Unless a PC gets infected and allows somebody to tunnel in and get access to everything inside the network.

Re:Campus Printers

[afidel]

The LPT/USB port isn't usually disabled, so just hook up a cable and print =)