header-logo
Suggest Exploit
vendor:
JetDirect
by:
SecurityFocus
7.8
CVSS
HIGH
Denial of Service
400
CWE
Product Name: JetDirect
Affected Version From: N/A
Affected Version To: N/A
Patch Exists: NO
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2002

HP JetDirect firmware Denial of Service Vulnerability

HP JetDirect devices have an FTP service which fails to properly handle bad FTP commands sent with the ftp "quote" command. This causes the device to stop responding and possibly display an error message. Powering the device off and on is required to regain normal functionality.

Mitigation:

Ensure that the FTP service is not enabled on the JetDirect device.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/1491/info

HP JetDirect firmware is vulnerable to a Denial of Service attack. JetDirect devices have an FTP service which fails to properly handle bad FTP commands sent with the ftp "quote" command. This causes the device to stop responding and possibly display an error message. Powering the device off and on is required to regain normal functionality. 

ftp <printer address>
quote AAAAAAAAAAA

Navigation

Suggest Exploit

Services By CQR