Vulnerabilities > CVE-2018-5924 - Out-of-bounds Write vulnerability in HP products
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
A security vulnerability has been identified with certain HP Inkjet printers. A maliciously crafted file sent to an affected device can cause a stack buffer overflow, which could allow remote code execution.
Vulnerable Configurations
Common Weakness Enumeration (CWE)
Nessus
NASL family | Misc. |
NASL id | HP_PRINTERS_HPSBHF03589.NASL |
description | The firmware version running on the remote host is vulnerable to multiple vulnerabilities. An unauthenticated remote attacker could gain system-level unauthorized access to the affected device. Note that Nessus has not tested for these issues but has instead relied only on the self-reported version number of the device. |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 111666 |
published | 2018-08-13 |
reporter | This script is Copyright (C) 2018-2019 and is owned by Tenable, Inc. or an Affiliate thereof. |
source | https://www.tenable.com/plugins/nessus/111666 |
title | HP Ink Printers Multiple Vulnerabilities (HPSBHF03589) |
The Hacker News
id | THN:2F395858FFE43BF6A13B6CD08DF6F996 |
last seen | 2018-08-14 |
modified | 2018-08-14 |
published | 2018-08-14 |
reporter | The Hacker News |
source | https://thehackernews.com/2018/08/hack-printer-fax-machine.html |
title | Hackers can compromise your network just by sending a Fax |
Related news
References
- http://www.securityfocus.com/bid/105010
- http://www.securityfocus.com/bid/105010
- http://www.securitytracker.com/id/1041415
- http://www.securitytracker.com/id/1041415
- https://research.checkpoint.com/sending-fax-back-to-the-dark-ages/
- https://research.checkpoint.com/sending-fax-back-to-the-dark-ages/
- https://support.hp.com/us-en/document/c06097712
- https://support.hp.com/us-en/document/c06097712