Dons Deals

  • Subscribe to our RSS feed.
  • Twitter
  • StumbleUpon
  • Reddit
  • Facebook
  • Digg

Thursday, 29 November 2012

Samsung Printer firmware contains a hardcoded SNMP community string - US-CERT Vulnerability Note VU#281284

Posted on 19:11 by Unknown


Here's another Printer Network Backdoor to watch out for...

Don

Vulnerability Note VU#281284

Samsung Printer firmware contains a hardcoded SNMP community string

Original Release date: 26 Nov 2012 | Last revised: 29 Nov 2012

Print Document
Tweet
Like Me
Share

Overview

Samsung printers contain a hardcoded SNMP community string that could allow a remote attacker to take control of an affected device.

Description

Samsung printers (as well as some Dell printers manufactured by Samsung) contain a hardcoded SNMP full read-write community string that remains active even when SNMP is disabled in the printer management utility.

Impact

A remote, unauthenticated attacker could access an affected device with administrative read/write privileges. Secondary impacts include: the ability to make changes to the device configuration, access to sensitive information (e.g., device and network information, credentials, and information passed to the printer), and possibility the ability to leverage further attacks through arbitrary code execution.

Solution

Samsung and Dell have stated that models released after October 31, 2012 are not affected by this vulnerability. Samsung and Dell have also indicated that they will be releasing a patch tool later this year to address vulnerable devices.

Block Port 1118/udp

The reporter has stated that blocking the custom SNMP trap port of 1118/udp will help mitigate the risks.

Restrict Access

As a general good security practice, only allow connections from trusted hosts and networks. Restricting access would prevent an attacker from accessing an SNMP interface using the affected credentials from a blocked network location. (e.g. Using IP filtering and Mac address filtering)

Disable SNMP protocol

Samsung is advising end users to disable SNMPv1, 2 or use the secure SNMPv3 mode until the firmware updates are released.
*Note that the vulnerability reporter has stated that the community string that remains active even when SNMP is disabled in the printer management utility.

Vendor Information (Learn More)


Read More...
http://www.kb.cert.org/vuls/id/281284

News 11-29-12
Hackaday Links: November 29th, 2012
WASD Keyboards: Individual Custom Keycaps
MSP430 Spectrum Analyzer - YouTube
Through hole plating and milling at home
MariaMole – an alternate Arduino IDE aimed at advanced users
Best Free Software to Cut or Merge Audio Files
General Assembly Grants Palestine Upgraded Status in U.N. - NYTimes.com
Mercury Home to Ice, Messenger Spacecraft Findings Suggest - NYTimes.com
U.S. Draws Blueprint for an AIDS-Free Generation
How to Tie a Windsor Knot: 10 steps (with pictures) - wikiHow
Most Accurate Projection of Polar Ice Melt Produced to Date
A 60-Million-Year Debate on the Grand Canyon’s Age - NYTimes.com
Gstaad Switzerland Vacation Travel Reviews - hotels, resorts and activities
Researcher reveals backdoor access in Samsung printers | ZDNet





Email ThisBlogThis!Share to XShare to FacebookShare to Pinterest
Posted in | No comments
Newer Post Older Post Home

0 comments:

Post a Comment

Subscribe to: Post Comments (Atom)

Popular Posts

  • ZigBee - a specification for a suite of high level communication protocols used to create personal area networks built from small low-power digital radios
    ZigBee From Wikipedia, the free encyclopedia Jump to: navigation , search ZigBee ...
  • Open Sorce Hardware - The Wandboard is a low cost board based on the i.MX6 multicore ARM Cortex-A9 family of processors. In consists of a core module based on the EDM standard and a simple to extend baseboard
    Here's an Open Source Wandboard - Freescale i.MX6 ARM Cortex-A9 Opensource Community Development Board. The Wandboard is a low ...
  • 1967 Chevy Camaro Complete Rebuild - Videos, HowStuffWorks Videos "NAPA Videos"
    Video Playlist - West Coast Customs Shop, Completely Tears Down a 1967 Chevy Camaro and then does a Complete Rebuild...
  • Installing and Updating GRUB 2 in Fedora Linux
    This Page has allot of info on Installing, Updating and Trouble Shooting Grub 2 in Fedora Linux. There are some good How To's for...
  • Dynaco Stereo 400 Power Amplifier - Dead Channel Fix - Dynaco Repairs For PC-28 Amplifier Boards
    My Dynaco Stereo 400 Amp... The Page Below these e-mails with Kevin Boales. Looks like the one that I found. Back in ...
  • Open source PLC's - PLC (programmable logic controller)
    Here's some Great Looking Open source PLC Projects. The OSPLC Small & Large Bricks are open-source PLC (programmable logic ...
  • NetProMax PC with Motherboard P5PE-VM ASUSTeK
    Here are some links to info on the NetProMax PC with Motherboard P5PE-VM ASUSTeK ... Don ASUSTe...
  • Running a PXE Boot Server in Parted Magic
    Here's some good info on Running PXE Boot Server in Parted Magic... Don PXE – Parted Magic PXE PXE: the "classic" way ...
  • Americas Health Care - Obama Care - Key Features of the Affordable Care Act - Health Care and Education Reconciliation Act
    Finally! Some real info, as in... This is the date that the Affordable Care Act, goes into effect. Open enrollment in the Heal...
  • Building a Brushless Motor Controller using an ATmega Chip - by Davide Gironi
    Here's a very in depth Article on Building a Brushless Motor Controller using an ATmega Chip - by Davide Gironi... Do...

Blog Archive

  • ►  2013 (354)
    • ►  December (12)
    • ►  November (33)
    • ►  October (23)
    • ►  September (46)
    • ►  August (52)
    • ►  July (36)
    • ►  June (45)
    • ►  May (17)
    • ►  April (38)
    • ►  March (19)
    • ►  February (22)
    • ►  January (11)
  • ▼  2012 (145)
    • ►  December (27)
    • ▼  November (31)
      • Horsepower Season 1 - E-Rod Powered Supercar, Epis...
      • Samsung Printer firmware contains a hardcoded SNMP...
      • Amarok Music Player (I uninstalled from Fedora 14 ...
      • Analogue Soundlab Long Wire Reverb Setups by Joche...
      • Internet Radio Occupies an 80-year-old NMV Radio Case
      • OpenVDB DreamWorks goes Open Source
      • Home Theater Subwoofer Build (Tuba HT( with a fold...
      • Use a Speaker as a microphone (How To)
      • Mech Bass, Talk Box and Electro Mechanical Music (...
      • KMyMoney the personal finance manager for the KDE ...
      • Google Book Scanner and a Book Vending Machine (Vi...
      • CrowdStrike - HTTP iframe Injecting Linux Rootkit ...
      • Kids of Today vs 1980's Technology (HD) - YouTube
      • PSPP is a program for statistical analysis of samp...
      • Harwell computer, later known as the Wolverhampton...
      • Gamera - Human Powered Helicopter HPH Boca Bearing...
      • AVR Minecraft server lets you toggle pins from the...
      • Minitube - Manually Update in Fedora 14
      • Steampunk - Off Book PBS - YouTube
      • 3 Dollar Battery Charger
      • Jeri Ellsworth uses light bulbs in a Wien Bridge O...
      • TV Video Streaming Boxes and Media PC's
      • Wheelbarrow Recliners - The Loungebarrow is a Quir...
      • Nanoc - Create a powerful static website with nano...
      • Fasting May Not Be Needed Before Cholesterol Test ...
      • Mechanized Stroller Robot stroller lets kiddy's st...
      • A Dollar Store Voltmeter - $4 volt meter from a do...
      • Dropbox - Great way to send large files (But I lik...
      • DC-DC Bipolar Power Supply for Effect Pedals « Obs...
      • Construction of a Simplified Wood Gas Generator fo...
      • Setup your own Control Device, ie Remote Control f...
    • ►  October (14)
    • ►  September (15)
    • ►  August (48)
    • ►  July (10)
Powered by Blogger.

About Me

Unknown
View my complete profile