Vulnerabilities > CVE-2004-2166 - Unspecified vulnerability in Canon Imagerunner 5000I and Imagerunner C3200
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
The print-from-email feature in the Canon ImageRUNNER (iR) 5000i and C3200 digital printer, when not using IP address range filtering, allows remote attackers to print arbitrary text without authentication via a text/plain email to TCP port 25.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 2 |
Nessus
| NASL family | SMTP problems |
| NASL id | CANON_PRINT_BY_SMTP.NASL |
| description | The remote host seems to be a Canon ImageRUNNER printer, which runs a SMTP service. It is possible to send an email to the SMTP service and have it printed out. An attacker may use this flaw to send an endless stream of emails to the remote device and cause a denial of service by using all of the print paper. |
| last seen | 2020-06-01 |
| modified | 2020-06-02 |
| plugin id | 14819 |
| published | 2004-09-24 |
| reporter | This script is Copyright (C) 2004-2018 Tenable Network Security, Inc. |
| source | https://www.tenable.com/plugins/nessus/14819 |
| title | Canon ImageRUNNER SMTP Arbitrary Content Printing |