HP LaserJet, and possibly other JetDirect devices, resets the admin password when the device is turned off, which could allow remote attackers to access the device without the password.
Max CVSS
6.4
EPSS Score
0.27%
Published
2001-08-31
Updated
2008-09-05
The JetAdmin web interface for HP JetDirect does not set a password for the telnet interface when the admin password is changed, which allows remote attackers to gain access to the printer.
Max CVSS
7.5
EPSS Score
0.41%
Published
2001-08-31
Updated
2008-09-05
HP Web JetAdmin 6.0 allows remote attackers to cause a denial of service via a malformed URL to port 8000.
Max CVSS
5.0
EPSS Score
1.32%
Published
2000-05-24
Updated
2008-09-10
The web interface server in HP Web JetAdmin 5.6 allows remote attackers to read arbitrary files via a .. (dot dot) attack.
Max CVSS
7.5
EPSS Score
7.84%
Published
2000-05-24
Updated
2008-09-10
HP JetAdmin D.01.09 on Solaris allows local users to change the permissions of arbitrary files via a symlink attack on the /tmp/jetadmin.log file.
Max CVSS
7.2
EPSS Score
0.04%
Published
1998-07-15
Updated
2016-10-18
5 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!