Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-1039

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2001-1039
Last Modified 05 Sep 2008 04:25:32
Published 31 Aug 2001 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2001-1039

Summary

The JetAdmin web interface for HP JetDirect does not set a password for the telnet interface when the admin password is changed, which allows remote attackers to gain access to the printer.

Vulnerable Systems

Application

  • Hp Jetadmin 4.0

  • Hp Jetadmin 4.1.2

  • Hp Jetadmin 5.1

  • Hp Jetadmin 5.5

  • Hp Jetadmin 5.5.177

  • Hp Jetadmin 5.6

  • Hp Jetadmin 6.0

  • Hp Jetadmin 6.1

  • Hp Jetadmin 6.2


References

BID - 3132

BUGTRAQ - 20010801 HP Jetdirect passwords don't sync


Last Updated: 27 May 2016 10:36:30