Denial of Service Vulnerability in Canon Printers
CVE-2013-4615

Currently unrated

Key Information:

Vendor

Canon

Status
Mx870 Printer
Mg6100 Printer
Mp495 Printer
Mx922 Printer
Vendor
CVE Published:
21 June 2013

What is CVE-2013-4615?

The vulnerability allows remote attackers to exploit Canon printers, causing them to hang by sending specially crafted parameters. The issue arises when the LAN_TXT24 parameter is improperly handled by the English/pages_MacUS/cgi_lan.cgi interface, followed by a request to the lan_set_content.html page. While Canon suggests that these devices can be operated securely within their environments, the vulnerability highlights potential risks if printers are not adequately safeguarded against unauthorized network access.

References

http://www.mattandreko.com/2013/06/canon-y-u-no-security....
x_refsource_MISC
https://github.com/rapid7/metasploit-framework/blob/maste...
x_refsource_MISC
http://archives.neohapsis.com/archives/fulldisclosure/201...
mailing-listx_refsource_FULLDISC

EPSS Score

65% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability Reserved

  • Vulnerability published

.