Vulnerabilities > CVE-2018-5924 - Out-of-bounds Write vulnerability in HP products
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
A security vulnerability has been identified with certain HP Inkjet printers. A maliciously crafted file sent to an affected device can cause a stack buffer overflow, which could allow remote code execution.
Vulnerable Configurations
Common Weakness Enumeration (CWE)
Nessus
| NASL family | Misc. |
| NASL id | HP_PRINTERS_HPSBHF03589.NASL |
| description | The firmware version running on the remote host is vulnerable to multiple vulnerabilities. An unauthenticated remote attacker could gain system-level unauthorized access to the affected device. Note that Nessus has not tested for these issues but has instead relied only on the self-reported version number of the device. |
| last seen | 2020-06-01 |
| modified | 2020-06-02 |
| plugin id | 111666 |
| published | 2018-08-13 |
| reporter | This script is Copyright (C) 2018-2019 and is owned by Tenable, Inc. or an Affiliate thereof. |
| source | https://www.tenable.com/plugins/nessus/111666 |
| title | HP Ink Printers Multiple Vulnerabilities (HPSBHF03589) |
The Hacker News
| id | THN:2F395858FFE43BF6A13B6CD08DF6F996 |
| last seen | 2018-08-14 |
| modified | 2018-08-14 |
| published | 2018-08-14 |
| reporter | The Hacker News |
| source | https://thehackernews.com/2018/08/hack-printer-fax-machine.html |
| title | Hackers can compromise your network just by sending a Fax |