Skip to main content

Samsung printers contain hidden, hard-coded management account

posted onNovember 27, 2012
by l33tdawg

Samsung printers released before October 31, 2012, have been found to contain a hard-coded account that could allow an attacker to remotely take control of the device.

As described in a vulnerability note released by the US Computer Emergency Response Team (CERT), affected printers have a Simple Network Management Protocol (SNMP) account programmed into their firmware. This account continues to permit access to the device even if SNMP functions are disabled in the printer's management utility. Some Dell printers manufactured by Samsung are also affected.

SNMP allows administrators to manage or monitor networked devices, such as printers, routers, or even servers, meaning that attackers could easily change any of the affected printers' settings. An attacker could also capture any network traffic that the printer would normally have access to.

Source

Tags

Samsung Hardware Security

You May Also Like

Recent News

Tuesday, November 19th

Friday, November 8th

Friday, November 1st

Tuesday, July 9th

Wednesday, July 3rd

Friday, June 28th

Thursday, June 27th

Thursday, June 13th

Wednesday, June 12th

Tuesday, June 11th