Slashdot Mirror

← Back to Stories (view on slashdot.org)

Hardcoded Administrator Account Opens Backdoor Access To Samsung Printers

Posted by Soulskill on from the apple-probably-suing-for-patent-infringement dept.

hypnosec writes "A new flaw has been discovered in printers manufactured by Samsung whereby a backdoor in the form of an administrator account would enable attackers to not only take control of the flawed device, but will also allow them to attack other systems in the network. According to a warning on US-CERT the administrator account is hard-coded in the device in the form of an SNMP community string with full read-write access. The backdoor is not only present in Samsung printers but also in Dell printers that have been manufactured by Samsung. The administrator account remains active even if SNMP is disabled from the printer's administration interface."

17 of 103 comments (clear)

  1. Forget about the printers... by RocketRabbit · · Score: 2, Interesting

    What about the Samsung backdoor into your phones?

    1. Re:Forget about the printers... by Anonymous Coward · · Score: 3, Funny

      They're copying Apple's?

    2. Re:Forget about the printers... by VortexCortex · · Score: 3, Funny

      That's the first thing I thought too, that if we just discovered this in Samsung printers is there a hardcoded backdoor in Samsung galaxy s3 phones too?

      Hmm... Good question. If I had one myself, I could tell you just by looking... Does the S3 come with a paper feeder? If so, it certainly has a back door of some kind.
      I mean, how else do you clear paper jams?

  2. Don't let Ben Bernanke find out about this... by hawks5999 · · Score: 2

    He'll have a printer botnet running in no time!

    1. Re:Don't let Ben Bernanke find out about this... by hawks5999 · · Score: 2

      You have no idea how true that is.

  3. Re:Silver Lining? by Anonymous Coward · · Score: 3, Informative

    Question: Does anyone know if this exploit could be used to alter/remove the tracking dots every color laser printer marks its documents with?

    No need. Following a link from the page you posted shows Samsung doesn't have tracking dots.

  4. Re:Bloated Hardware by Tanktalus · · Score: 5, Insightful

    Yes. Because we don't want any way to prevent student A from cancelling student B's jobs. Or any way for a trusted user, such as the sysadmin, from cancelling all jobs.

    And we definitely want all nimwits on the network to have complete and arbitrary control over how many pages they can use, or how much ink. Maximum quality print jobs in a comp sci department printer? No problem! (I remember watching a dot-matrix printer spit out a core file, that was entertaining.)

    Definitely, no good whatsoever could come from a printer with any authentication control.

    Obviously, Samsung agrees, because all their printers apparently have the same unchangeable admin account and password.

  5. Old news to Dell by Anonymous Coward · · Score: 2, Interesting

    We have a few Dell 1720's and they have this issue. SNMP public is read/write on these printers even if you turn it off. We discovered this back in 2011 during an internal network security audit. The risk is pretty low for us because we have adaquate network controls but we asked Dell technical support about this and they told us that because the printers were so old there was no hope of a firmware fix; they actually first said it was a feature before I called their BS.

    Anyway, they didn't even have to research it. They had it right in their KB. If it was on for the old printers and they didn't fix it on newer printers then someone dropped the ball (or wanted to keep the "feature").

  6. I can testify! by Quiet_Desperation · · Score: 5, Funny

    but will also allow them to attack other systems in the network

    We had one go on a rampage last week! It tore up half the bay before a couple of us beat to death with a dictionary and one of those big staplers from the copy room. WHY WOULD THEY EVEN PUT HIDDEN ARMS AND LEGS ON A PRINTER?!

    1. Re:I can testify! by drinkypoo · · Score: 2

      We had one go on a rampage last week! It tore up half the bay before a couple of us beat to death with a dictionary and one of those big staplers from the copy room. WHY WOULD THEY EVEN PUT HIDDEN ARMS AND LEGS ON A PRINTER?!

      PC LOAD LETTER. YOU HAVE TEN SECONDS TO COMPLY.

      --
      "You're right," Fisheye says. "I should have set it on 'whip' or 'chop.'"
  7. Re:not if you need singed paper work by idontgno · · Score: 5, Funny

    not if you need singed paper work

    Good point. No matter how much heat you apply, you can't get a good char on a softcopy. Not even a little browning. You just burn your monitor.

    Nothing burns, shreds, or pulps like paper.

    --
    Welcome to the Panopticon. Used to be a prison, now it's your home.
  8. I can't believe it, Jim! by jtownatpunk.net · · Score: 2

    That girl's standing over there listening and you're telling him about our back doors?

  9. Re:not if you need singed paper work by jtownatpunk.net · · Score: 2

    I think your fuser's too hot.

  10. Re:This isn't the first time I have heard of this by mlts · · Score: 3, Insightful

    Someone needs to invent a fairly simple device. It would have two Ethernet ports and a USB port. The USB port is used for programming it, perhaps then used for power. The Ethernet ports would be used for bridging/routing.

    You put the device between whatever device and the rest of the network, select what purpose the device does, (or manually specify ports), and call it done, with the thing automatically proxying/masquerading. Print job hits port 515 on the device, the device sends the packets to the printer.

    This way, even if there is some unknown port, it gets shut off.

    Of course, the next step for backdoors would be backdoors in protocols (such as unique packets that normally would get ignored), but that can be found by DPI.

  11. again? by genericmk · · Score: 2

    It's about time the large corporations sent a memo to developers to remove hard coded administrator access from its devices.

  12. Re:Bloated Hardware by evilviper · · Score: 4, Insightful

    A printer should be a computer that only receives files and prints them. They should not be "connected" to a network any more than a UDP package is connected to its recipient.

    Oh good, because we wouldn't want to have any assurances that our 100MB print jobs were transferred to the printer successfully... Or know when they're running low on toner... or that there's a paper jam and the printer has caught fire... or be able to tell it to use the media in tray number 5... or be able to connect a printer to your WiFi network.

    --
    Slashdot gets worse every day... Pipedot: News for nerds, without the corporate slant
  13. Re:This isn't the first time I have heard of this by xmundt · · Score: 2

    There is NO time when it is good to have a hard-coded admin password on a networked device. that is just bad programming.

              pleasant dreams.

    --
    YAB - http://blog.beemandave.com/