CVE-2004-2166

Name of the Vulnerable Software and Affected Versions Canon ImageRUNNER (iR) 5000i and C3200 digital printer (affected versions not specified)

Description The issue concerns the print-from-email feature in the Canon ImageRUNNER (iR) 5000i and C3200 digital printer. When IP address range filtering is not used, remote attackers can print arbitrary text without authentication by sending a text/plain email to TCP port 25.

Recommendations For the Canon ImageRUNNER (iR) 5000i and C3200 digital printer, consider implementing IP address range filtering to restrict access to the print-from-email feature. As a temporary workaround, restrict access to TCP port 25 to minimize the risk of exploitation.