Friday, December 15, 2017
Search
  
Submit your own News for
inclusion in our Site.
Click here...
Breaking News
Facebook Will Start Putting Ads Before Videos
Samsung's Smart Speaker Coming Next Year
Internet Neutrality is Officially Dead
Synaptics Brings First In-Display Fingerprint Sensors for Smartphones
Disney to Buy Fox Film and Some TV Businesses for $52 billion
Powerful iMac Pro is Available Today, Starting at $5,000
IBM Announces Collaboration With Leading Companies to Accelerate Quantum Computing
Bing Gets Intelligent Search Features, Powered by AI
Active Discussions
Which of these DVD media are the best, most durable?
How to back up a PS2 DL game
Copy a protected DVD?
roxio issues with xp pro
Help make DVDInfoPro better with dvdinfomantis!!!
menu making
Optiarc AD-7260S review
cdrw trouble
 Home > News > PC Parts > HP Patc...
Last 7 Days News : SU MO TU WE TH FR SA All News

Thursday, November 23, 2017
HP Patches Code execution Bug in Enterprise Printers


HP has released firmware patches to fix a vulnerability that could be exploited to perform remote code execution attacks on enterprise-grade printers.

HP says that the vulnerability impacts a wide range of business-ready printers, including the HP Color LaserJet Enterprise M651, HP Color LaserJet M680, HP LaserJet Enterprise Flow MFP M631, HP PageWide Enterprise Color X556, and many others.

The firmware updates can be downloaded manually from HP through the firmware search tool.

The bug was reported by FoxGlove Security, which issued an advisory disclosing the technical details about it. The researchers managed to reverse engineer ".BDL" (bundle) extension files found in HP's firmware. The next step was to
craft and upload crafted firmware files to discover where signature validation was taking place in order to bypass these protections.

Due to "insufficient solution DLL signature validation," FoxGlove was then able to use this information to create malware specifically designed to exploit the printer ranges' security weaknesses leading to remote code execution.



Previous
Next
Apple Applies for Patent on Foldable Display        All News        YouTube Takes More Steps to Tackle Down Videos Inappropriate for Minors
Toshiba Offers New 10TB Surveillance Hard Disk Drive     PC Parts News      U.S. Government Warns Businesses About Vulnerabilities Of Management Engine in Intel Chips

Get RSS feed Easy Print E-Mail this Message

Related News
HP Patches New Keylogger Software in its Laptops
HPE and Dell Continue to Lead the Storage and Server Markets
AMD EPYC Processor Powers the New HPE Gen10 Server
New HPE Superdome Flex Server Offers up to 48TB of In-memory Analytics
HP Launches the Powerful ZBook X2 Detachable PC
HP Refreshes Spectre Portfolio With New Processors, Integrated Privacy Screen
HP Announces New Premium PCs, Offers Sevice As a Service, Launches University for Partner Employees
HP Announces new OMEN X Laptop
HP's Z VR Backpack G1 Workstation Puts Pros Into the VR World
HP Takes Back PC Shipment Crown from Lenovo
HP Debuts Omen Accelerator, Powerful Omen and Omen X Compact Desktops
HP Debuts New Premium PC Portfolio Taking On Microsoft's Surface Models

Most Popular News
 
Home | News | All News | Reviews | Articles | Guides | Download | Expert Area | Forum | Site Info
Site best viewed at 1024x768+ - CDRINFO.COM 1998-2017 - All rights reserved -
Privacy policy - Contact Us .