Remote Printing Vulnerability in Canon ImageRUNNER Printers
CVE-2004-2166

Currently unrated

Key Information:

Vendor: Canon
Status: Imagerunner C3200; Imagerunner 5000i
Vendor: CVE Published:; 31 December 2004

What is CVE-2004-2166?

The Canon ImageRUNNER 5000i and C3200 printers have a serious vulnerability in their print-from-email feature. When IP address range filtering is not enabled, this flaw permits attackers to send arbitrary text to the printer via a simple text/plain email directed to TCP port 25. This lack of authentication allows remote users to exploit the device, potentially leading to unauthorized print jobs, making it a considerable threat to sensitive information or resources within an organization.

References

http://www.securityfocus.com/bid/11247

vdb-entryx_refsource_BID

https://exchange.xforce.ibmcloud.com/vulnerabilities/17512

vdb-entryx_refsource_XF

http://www.securityfocus.com/archive/1/376242

mailing-listx_refsource_BUGTRAQ

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Jul 10, 2005
Vulnerability published
Dec 31, 2004