Thursday, February 05, 2009

HP JetDirect Vulnerability

There has been a recently discovered vulnerability in the HP-ChaiSOE/1.0 embedded web server on certain HP JetDirect printers. The affected printers are:


  • HP LaserJet 2410 with firmware prior to 20080819
  • SPCL112A HP LaserJet 2420 with firmware prior to 20080819
  • SPCL112A HP LaserJet 2430 with firmware prior to 20080819
  • SPCL112A HP LaserJet 4250 with firmware prior to 20080819
  • SPCL015A HP LaserJet 4350 with firmware prior to 20080819
  • SPCL015A HP LaserJet 9040 with firmware prior to 20080819
  • SPCL110A HP LaserJet 9050 with firmware prior to 20080819
  • SPCL110A HP LaserJet 4345mfp with firmware prior to 09.120.9
  • HP Color LaserJet 4730mfp with firmware prior to 46.200.9
  • HP LaserJet 9040mfp with firmware prior to 08.110.9
  • HP LaserJet 9050mfp with firmware prior to 08.110.9
  • HP 9200C Digital Sender with firmware prior to 09.120.9
  • HP Color LaserJet 9500mfp with firmware prior to 08.110.9
HP has released a security bulletin and updated firmware for the affected devices.

Regards,

The Outspoken Wookie

No comments: