Printers Vulnerable To Security Threats 173
jcatcw writes "Networked printers are more vulnerable to attack than many organizations realize. Symantec has logged vulnerabilities in five brands of network printers. Printers outside firewalls, for ease of remote printing, may also be open to easy remote code execution. They can be possible launching pads for attacks on the rest of the network. Disabling services that aren't needed and keeping up with patches are first steps to securing them." From the article: "Security experts say that printers are loaded with more complex applications than ever, running every vulnerable service imaginable, with little or no risk management or oversight.... [N]etworked printers need to be treated like servers or workstations for security purposes — not like dumb peripherals."
Try it out (Score:5, Interesting)
Happened before (Score:2, Interesting)
Maybe we'll see a lot of these coming, it'll be fun *hee hee hee* {devilish laugh}. I don't have a printer }:-]
Re:What are they going to do... (Score:3, Interesting)
Altering what is printed? Change amounts on printed spreadsheets, change destination for item transfers, and other "creative uses"
Re:Identifying viruses (Score:2, Interesting)
Campus Printers (Score:4, Interesting)
http://www.vistahelpforum.com/ [vistahelpforum.com]
This is what happened to Iraq. (Score:3, Interesting)
(The story was recounted in The Generals' War.)
How FUDtastic!!! (Score:2, Interesting)
Symantec is quaking in its boots and instead of shouting fire in a theater they should be looking at what they have and capitalizing on it. Why else would they buy Veritas? I'm sure it wasn't because it they wanted to add AV to it.
Toner and Ink Cartridge companies look to exploit. (Score:2, Interesting)
Imagine those companies that sell expensive toner and ink cartridges pairing up with someone to write some malicious code to burn through your printing supplies faster.
It won't be long before you hear about something like the "Page_Blackout" or "Toner_Drain" worm.
Re:Unless... (Score:5, Interesting)
The high-end HPs had both harddisk, and a JVM with listening socket on port 80. WHeee!
Re:This is news? (Score:2, Interesting)
I started dicking around with the PCL "ready" message, and they realized that it COULD store data -- in the "ready" message.
New printer, ahoy!
Re:Try it out (Score:4, Interesting)
Re:Try it out (Score:3, Interesting)
Hacking Embedded Network Systems (Score:4, Interesting)
FX of Phenoelit gave an amazing talk on this at CanSecWest/core03 back in 2003 that outlined how to turn a JetDirect printer into a webserver, fileserver or even a port scanner! We all had a huge chuckle at the thought of someone tracking down a port scanner on the network only to find it was coming from an HP printer.
The entire presentation is still available online in both PDF [cansecwest.com] and PPT [cansecwest.com] format.
The tools used to hack the printers are available here [phenoelit.de].
Re:Unless... (Score:5, Interesting)
Of course, this also means that I can't stick up a website for the world from my laptop anymore, either. =/ Ah well.