Vulnerabilities > CVE-2006-6742 - Denial-Of-Service vulnerability in HP FTP Print Server, Laserjet 5000 and Laserjet 5100

CVSS 7.8 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

COMPLETE

network

low complexity

NVD

Published: 2006-12-26

Updated: 2018-10-17

Summary

Multiple buffer overflows in FTP Print Server 2.4 and 2.4.5 in HP LaserJet 5000 Series printers with firmware R.25.15 or R.25.47, and HP LaserJet 5100 Series printers with firmware V.29.12, allow remote attackers to cause a denial of service (device crash) via a long string in the (1) LIST or (2) NLST command.

Vulnerable Configurations

Part	Description	Count
Application	Hp HP FTP Print Server 2.4 HP FTP Print Server 2.4.5	2
Hardware	Hp HP Laserjet 5000 R.25.15 HP Laserjet 5000 R.25.47 HP Laserjet 5100 V.29.12	3

References

http://lists.grok.org.uk/pipermail/full-disclosure/2006-December/051367.html
http://secunia.com/advisories/23396
http://securityreason.com/securityalert/2074
http://www.securityfocus.com/archive/1/454817/100/0/threaded
http://www.vupen.com/english/advisories/2006/5081