Slashdot Mirror

← Back to Stories (view on slashdot.org)

Printers Vulnerable To Security Threats

Posted by kdawson on from the infected-my-what? dept.

jcatcw writes "Networked printers are more vulnerable to attack than many organizations realize. Symantec has logged vulnerabilities in five brands of network printers. Printers outside firewalls, for ease of remote printing, may also be open to easy remote code execution. They can be possible launching pads for attacks on the rest of the network. Disabling services that aren't needed and keeping up with patches are first steps to securing them." From the article: "Security experts say that printers are loaded with more complex applications than ever, running every vulnerable service imaginable, with little or no risk management or oversight.... [N]etworked printers need to be treated like servers or workstations for security purposes — not like dumb peripherals."

7 of 173 comments (clear)

  1. Try it out by delirium+of+disorder · · Score: 5, Interesting

    Over the past several years, if you did a random port scan of the Internet (nmap -iR) the majority of open telnet (tcp port 23) servers were print servers that let you telnet in and change all sorts of settings.

    --
    ------ Take away the right to say fuck and you take away the right to say fuck the government.
    1. Re:Try it out by advocate_one · · Score: 3, Interesting

      More likely a stripped down Linux... I assisted a service agent a couple of years ago and the fancy photocopier, scanner, faxer, emailer (it could scan and send the scans as emails... very useful) beast showed a Linux boot up sequence while booting into safe mode (he knew the secret jumper to set for this mode)... Also, my HP PSC1350 is running Linux, I know this because when I was installing Debian on my computer a few months ago, I had the printer connected and powered up and the Debian installer wanted to know if I wanted to install debian onto the ext2 partition it had found on the printer (connected via USB). I was rather surprised and thankfully I hadn't blindly accepted it.

      --
      Donald 'Duck' Dunn: We had a band powerful enough to turn goat piss into gasoline.
  2. Campus Printers by cpearson · · Score: 4, Interesting

    On many if not most college campuses the printers are administered and accounted for my a system tied to a student id. Each student can get so many free prints per semester and can pay per print after exceeding that. Malicious code executing on a print server could sniff all the student accounts accessing the printer.

    http://www.vistahelpforum.com/

    --
    Windows Vista Help Forum
  3. This is what happened to Iraq. by darkmeridian · · Score: 3, Interesting

    Laugh if you want, but this was what happened to Iraq on the eve of the Gulf War. A modified printer was put onto their defense computer network by an Allied operative. Right when the air war started, the bug fired up and brought down the network. Just because a threat sounds outlandish does not mean it isn't a real threat.

    (The story was recounted in The Generals' War.)

    --
    A NYC lawyer blogs. http://www.chuangblog.com/
  4. Re:Unless... by Jeremiah+Cornelius · · Score: 4, Interesting

    We used these REGULARLY to exploit banks, in our testing.

    The high-end HPs had both harddisk, and a JVM with listening socket on port 80. WHeee!

    --
    "Flyin' in just a sweet place,
    Never been known to fail..."
  5. Hacking Embedded Network Systems by nuckfuts · · Score: 3, Interesting

    FX of Phenoelit gave an amazing talk on this at CanSecWest/core03 back in 2003 that outlined how to turn a JetDirect printer into a webserver, fileserver or even a port scanner! We all had a huge chuckle at the thought of someone tracking down a port scanner on the network only to find it was coming from an HP printer.

    The entire presentation is still available online in both PDF and PPT format.

    The tools used to hack the printers are available here.

  6. Re:Unless... by FooAtWFU · · Score: 4, Interesting
    My school, before the Great Firewalling of its network a few years ago, had its printers open to the whole Internet. Apparently someone hacked into one and used it as an FTP server for warez and porn. And it still worked as a printer. :)

    Of course, this also means that I can't stick up a website for the world from my laptop anymore, either. =/ Ah well.

    --
    The World Wide Web is dying. Soon, we shall have only the Internet.