Summary
| Detail | |||
|---|---|---|---|
| Vendor | Hp | First view | 2009-02-04 |
| Product | Laserjet 4250 | Last view | 2013-04-29 |
| Version | q5400a | Type | Hardware |
| Update | * | ||
| Edition | * | ||
| Language | * | ||
| Sofware Edition | * | ||
| Target Software | * | ||
| Target Hardware | * | ||
| Other | * | ||
| CPE Product | cpe:2.3:h:hp:laserjet_4250 | ||
Activity : Overall
Related : CVE
| Date | Alert | Description | |
|---|---|---|---|
| 5 | 2013-04-29 | CVE-2012-5221 | Directory traversal vulnerability in the PostScript Interpreter, as used on the HP LaserJet 4xxx, 5200, 90xx, M30xx, M4345, M50xx, M90xx, P3005, and P4xxx; LaserJet Enterprise P3015; Color LaserJet 3xxx, 47xx, 5550, 9500, CM60xx, CP35xx, CP4005, and CP6015; Color LaserJet Enterprise CP4xxx; and 9250c Digital Sender with model-dependent firmware through 52.x allows remote attackers to read arbitrary files via unknown vectors. |
| 7.8 | 2009-02-04 | CVE-2008-4419 | Directory traversal vulnerability in the HP JetDirect web administration interface in the HP-ChaiSOE 1.0 embedded web server on the LaserJet 9040mfp, LaserJet 9050mfp, and Color LaserJet 9500mfp before firmware 08.110.9; LaserJet 4345mfp and 9200C Digital Sender before firmware 09.120.9; Color LaserJet 4730mfp before firmware 46.200.9; LaserJet 2410, LaserJet 2420, and LaserJet 2430 before firmware 20080819 SPCL112A; LaserJet 4250 and LaserJet 4350 before firmware 20080819 SPCL015A; and LaserJet 9040 and LaserJet 9050 before firmware 20080819 SPCL110A allows remote attackers to read arbitrary files via directory traversal sequences in the URI. |
CWE : Common Weakness Enumeration
| % | id | Name |
|---|---|---|
| 100% (1) | CWE-22 | Improper Limitation of a Pathname to a Restricted Directory ('Path ... |
Open Source Vulnerability Database (OSVDB)
| id | Description |
|---|---|
| 51830 | HP JetDirect HP-ChaiSOE Web Server Unspecified Administration Component Trave... |
Information Assurance Vulnerability Management (IAVM)
| id | Description |
|---|---|
| 2013-B-0043 | HP Multiple LaserJet Printers Information Disclosure Vulnerability Severity: Category II - VMSKEY: V0037764 |
| 2009-T-0010 | HP LaserJet Printers Directory Traversal Vulnerability Severity: Category II - VMSKEY: V0018393 |
Nessus® Vulnerability Scanner
| id | Description |
|---|---|
| 2009-04-10 | Name: The remote web server is affected by a directory traversal vulnerability. File: hp_laserjet_directory_traversal.nasl - Type: ACT_GATHER_INFO |
