Telnet Interface Vulnerability in HP JetDirect Printers
CVE-2001-1039

Currently unrated

Key Information:

Vendor: HP
Status: Jetadmin
Vendor: CVE Published:; 31 August 2001

What is CVE-2001-1039?

The JetAdmin web interface in HP JetDirect devices fails to set a password for the telnet interface when the administrator changes the password. This oversight allows remote attackers to exploit the unsecured telnet access, gaining unauthorized control over the printing device. Users are advised to particularly monitor their printer security settings and consider implementing additional protective measures to prevent potential intrusions.

References

http://www.securityfocus.com/bid/3132

vdb-entryx_refsource_BID

http://www.securityfocus.com/archive/1/201160

mailing-listx_refsource_BUGTRAQ

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Jan 31, 2002
Vulnerability published
Aug 31, 2001