Posted on March 12, 2013 11:21 pm

US-CERT warns of HP LaserJet printer backdoor

A number of HP LaserJet printers can be accessed through the network and unencrypted data can be read from them without authentication. The US-CERT has issued an advisory that warns users of these printers and is calling on them to update the printer’s firmware with a fixed version.

In all, ten models of the LaserJet Pro series can be accessed via telnet without a password prompt. A debug shell is then started on that telnet port which gives access to the printer, allows for the disabling of SSL connections and showing passwords in plain text for the HP ePrint Cloud server connection. In an interview with online magazine CRN, Christoph von Wittich, who discovered the flaw while doing a routine scan of his company’s network, explained that the flaw could also be used for a denial of service attack but, by default, the shell is not accessible from the internet and “should not cause much trouble for the end user”.

HP’s own advisory identifies HP LaserJet Pro P1102w, P1606dn, M1212nf MFP (Multi Function Printer), M1213nf MFP, M1214nfh MFP, M1216nfh MFP, M1217nfw MFP, M1219nf MFP and CP1025nw printers as affected by the problem and has issued firmware and installation instructions for that firmware to close the vulnerability.