PT-2004-2755 · Hewlett Packard · Hp Web Jetadmin

Wirepair

Published

2004-03-24

Updated

2017-07-11

CVE-2004-1856

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions HP Web JetAdmin version 7.5.2546

Description The issue allows remote attackers to upload arbitrary files to the printer directory when no password is set. This is related to the devices update printer fw upload.hts file in HP Web JetAdmin.

Recommendations For HP Web JetAdmin version 7.5.2546, set a password to prevent unauthorized access and restrict the ability to upload arbitrary files to the printer directory.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2004-1856

Affected Products

Hp Web Jetadmin

PT-2004-2755 · Hewlett Packard · Hp Web Jetadmin

CVE-2004-1856

Related Identifiers

Affected Products

References · 7