Friday, February 23, 2018
Search
  
Submit your own News for
inclusion in our Site.
Click here...
Breaking News
First Affordable Android Go Smartphones Coming Next Week
Samsung Breaks Ground on New EUV Line in Hwaseong
Samsung Max Android Application Offering Mobile Data Saving Mode and Privacy
Introducing the CORSAIR Obsidian Series 500D
EASA Publishes Guidelines for Safe Drone Operations
Apple to Upgrade the AirPods Headphones
SK Telecom to Unveil 'HoloBox' Hologram AI Technology at Mobile World Congress 2018
Worldwide Sales of Smartphones Declined in 4Q, Samsung Retains First Spot
Active Discussions
Which of these DVD media are the best, most durable?
How to back up a PS2 DL game
Copy a protected DVD?
roxio issues with xp pro
Help make DVDInfoPro better with dvdinfomantis!!!
menu making
Optiarc AD-7260S review
cdrw trouble
 Home > News > PC Parts > HP Patc...
Last 7 Days News : SU MO TU WE TH FR SA All News

Thursday, November 23, 2017
HP Patches Code execution Bug in Enterprise Printers


HP has released firmware patches to fix a vulnerability that could be exploited to perform remote code execution attacks on enterprise-grade printers.

HP says that the vulnerability impacts a wide range of business-ready printers, including the HP Color LaserJet Enterprise M651, HP Color LaserJet M680, HP LaserJet Enterprise Flow MFP M631, HP PageWide Enterprise Color X556, and many others.

The firmware updates can be downloaded manually from HP through the firmware search tool.

The bug was reported by FoxGlove Security, which issued an advisory disclosing the technical details about it. The researchers managed to reverse engineer ".BDL" (bundle) extension files found in HP's firmware. The next step was to
craft and upload crafted firmware files to discover where signature validation was taking place in order to bypass these protections.

Due to "insufficient solution DLL signature validation," FoxGlove was then able to use this information to create malware specifically designed to exploit the printer ranges' security weaknesses leading to remote code execution.



Previous
Next
Apple Applies for Patent on Foldable Display        All News        YouTube Takes More Steps to Tackle Down Videos Inappropriate for Minors
Toshiba Offers New 10TB Surveillance Hard Disk Drive     PC Parts News      U.S. Government Warns Businesses About Vulnerabilities Of Management Engine in Intel Chips

Get RSS feed Easy Print E-Mail this Message

Related News
HP Launches Device as a Service for Apple
HP Delivers Revamped Elitebook and Zbook Lines, Additions to 4K monitor lineup and New Thunderbolt Dock G2
HP Boosts Performance of Z4 Workstation, Unveils VR Windows Mixed Reality Headset
CES 2018: HP announces the HP ENVY x2, HP Spectre x360 15, HP Z 3D Camera
HP Recalls 50,000 Laptop Batteries
HP Patches New Keylogger Software in its Laptops
HPE and Dell Continue to Lead the Storage and Server Markets
AMD EPYC Processor Powers the New HPE Gen10 Server
New HPE Superdome Flex Server Offers up to 48TB of In-memory Analytics
HP Launches the Powerful ZBook X2 Detachable PC
HP Refreshes Spectre Portfolio With New Processors, Integrated Privacy Screen
HP Announces New Premium PCs, Offers Sevice As a Service, Launches University for Partner Employees

Most Popular News
 
Home | News | All News | Reviews | Articles | Guides | Download | Expert Area | Forum | Site Info
Site best viewed at 1024x768+ - CDRINFO.COM 1998-2018 - All rights reserved -
Privacy policy - Contact Us .