HP JetDirect Multiple DoS Vulnerabilities

The FTP, Telnet, and LPD components of HP JetDirect firmware are susceptible to multiple buffer overflow vulnerabilities. In addition, the IP implementation in JetDirect does not properly handle certain malformed packets. Depending on the vulnerability, successful exploitation could lead to a denial of service attack against the JetDirect or destruction of the firmware.

Firmware replacement is required in order to return the JetDirect card to normal operations.

It has been reported that CodeRed may exploit this vulnerability.


 

Privacy Statement
Copyright 2010, SecurityFocus