PT-2012-1956 · Hewlett Packard · Hp Laserjet P3015+3

Published

2012-01-10

Updated

2017-08-29

CVE-2011-4785

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:C/I:N/A:N

Name of the Vulnerable Software and Affected Versions HP LaserJet P3015 printer with firmware prior to 07.080.3 HP LaserJet 4650 printer with firmware 07.006.0 HP LaserJet 2430 printer with firmware 08.113.0 I35128

Description A directory traversal issue in the HP-ChaiSOE/1.0 web server allows remote attackers to read arbitrary files via unspecified vectors.

Recommendations For HP LaserJet P3015 printer, update the firmware to version 07.080.3 or later. For HP LaserJet 4650 printer, consider disabling the web server functionality until a firmware update is available. For HP LaserJet 2430 printer, restrict access to the web server interface until a firmware update is available.

Fix

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-200

Related Identifiers

CVE-2011-4785

Affected Products

Hp Laserjet 2430

Hp Laserjet 4650

Hp Laserjet P3015

Hp-Chaisoe

PT-2012-1956 · Hewlett Packard · Hp Laserjet P3015+3

CVE-2011-4785

Weakness Enumeration

Related Identifiers

Affected Products

References · 8