Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2009-0941

Overview

Vulnerability Score 7.6 7.6
CVE Id CVE-2009-0941
Last Modified 13 Oct 2009 12:00:00
Published 18 Mar 2009 05:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity HIGH
Authentication NONE

CVE-2009-0941

Summary

The HP Embedded Web Server (EWS) on HP LaserJet Printers, Edgeline Printers, and Digital Senders has no management password by default, which makes it easier for remote attackers to obtain access.

Vulnerable Systems


References

VUPEN - ADV-2009-0754

BUGTRAQ - 20090316 HP Laserjet multiple models web management CSRF vulnerability & insecure default configuration

MISC - http://www.louhinetworks.fi/advisory/HP_20090317.txt

HP - HPSN-2009-001


Last Updated: 27 May 2016 10:50:25