Author Topic: HP printers again  (Read 338 times)

0 Members and 1 Guest are viewing this topic.

Offline madires

  • Super Contributor
  • ***
  • Posts: 7043
  • Country: de
  • A qualified hobbyist ;)
HP printers again
« on: September 23, 2022, 09:20:56 am »
CVE-2022-28721 & CVE-2022-28722
Certain HP Print Products - Potential Buffer Overflow, Remote Code Execution: https://support.hp.com/us-en/document/ish_6839789-6839813-16/hpsbpi03810

Affected printers a some Inkjet, LaserJet Pro and PageWide Pro.
 

Offline SeanB

  • Super Contributor
  • ***
  • Posts: 15980
  • Country: za
Re: HP printers again
« Reply #1 on: September 23, 2022, 12:52:06 pm »
So basically all with either wireless or wired ethernet connections. Why do you want to have a printer exposed to thewide internet in any case, you really want a good firewall before it, just so that you are not used as a source of scrap paper generation.
 

Offline madires

  • Super Contributor
  • ***
  • Posts: 7043
  • Country: de
  • A qualified hobbyist ;)
Re: HP printers again
« Reply #2 on: September 23, 2022, 01:11:32 pm »
Yep, strongly recommended. However, that's not the complete story. There are reports about attacks using the office PCs as point of entry and then deploying scanners, proxys and other tools on printers to gain long-term access and control. It seems that printers are often overlooked by IT security.
 


Share me

Digg  Facebook  SlashDot  Delicious  Technorati  Twitter  Google  Yahoo
Smf

 



Advertise on the EEVblog Forum