5.1 - CVE-2009-0940

Executive Summary

This Alert is flagged as TOP 25 Common Weakness Enumeration from CWE/SANS. For more information, you can read this.

Informations
Name	CVE-2009-0940	First vendor Publication	2009-03-18
Vendor	Cve	Last vendor Modification	2018-10-10

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score	NA
Base Score	NA	Environmental Score	NA
impact SubScore	NA	Temporal Score	NA
Exploitabality Sub Score	NA

Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:H/Au:N/C:P/I:P/A:P)
Cvss Base Score	5.1	Attack Range	Network
Cvss Impact Score	6.4	Attack Complexity	High
Cvss Expoit Score	4.9	Authentication	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Multiple cross-site request forgery (CSRF) vulnerabilities in the HP Embedded Web Server (EWS) on HP LaserJet Printers, Edgeline Printers, and Digital Senders allow remote attackers to hijack the intranet connectivity of arbitrary users for requests that (1) print documents via unknown vectors, (2) modify the network configuration via a NetIPChange request to hp/device/config_result_YesNo.html/config, or (3) change the password via the Password and ConfirmPassword parameters to hp/device/set_config_password.html/config.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0940

CWE : Common Weakness Enumeration

%	Id	Name
100 %	CWE-352	Cross-Site Request Forgery (CSRF) (CWE/SANS Top 25)

CPE : Common Platform Enumeration

Type	Description	Count
Hardware	Hp 8100C Digital Sender cpe:2.3:h:hp:8100c_digital_sender:-:::::::*	1
Hardware	Hp 9100C Digital Sender cpe:2.3:h:hp:9100c_digital_sender:-:::::::*	1
Hardware	Hp 9200C Digital Sender cpe:2.3:h:hp:9200c_digital_sender:-:::::::*	1
Hardware	Hp 9250C Digital Sender cpe:2.3:h:hp:9250c_digital_sender:-:::::::*	1
Hardware	Hp Color Laserjet cpe:2.3:h:hp:color_laserjet::::::::	1
Hardware	Hp Color Laserjet 1500 cpe:2.3:h:hp:color_laserjet_1500::::::::	1
Hardware	Hp Color Laserjet 2500 cpe:2.3:h:hp:color_laserjet_2500::::::::	1
Hardware	Hp Color Laserjet 2500L cpe:2.3:h:hp:color_laserjet_2500l::::::::	1
Hardware	Hp Color Laserjet 2500Lse cpe:2.3:h:hp:color_laserjet_2500lse::::::::	1
Hardware	Hp Color Laserjet 2500N cpe:2.3:h:hp:color_laserjet_2500n::::::::	1
Hardware	Hp Color Laserjet 2500Tn cpe:2.3:h:hp:color_laserjet_2500tn::::::::	1
Hardware	Hp Color Laserjet 2605Dtn cpe:2.3:h:hp:color_laserjet_2605dtn::::::::	1
Hardware	Hp Color Laserjet 4370Mfp cpe:2.3:h:hp:color_laserjet_4370mfp:20081211_46.211.2:::::::*	1
Hardware	Hp Color Laserjet 4600 cpe:2.3:h:hp:color_laserjet_4600::::::::	1
Hardware	Hp Color Laserjet 4600Dn cpe:2.3:h:hp:color_laserjet_4600dn::::::::	1
Hardware	Hp Color Laserjet 4600Dtn cpe:2.3:h:hp:color_laserjet_4600dtn::::::::	1
Hardware	Hp Color Laserjet 4600Hdn cpe:2.3:h:hp:color_laserjet_4600hdn::::::::	1
Hardware	Hp Color Laserjet 4650 cpe:2.3:h:hp:color_laserjet_4650::::::::	1
Hardware	Hp Color Laserjet 4700 cpe:2.3:h:hp:color_laserjet_4700::::::::	1
Hardware	Hp Color Laserjet 4730 Mfp cpe:2.3:h:hp:color_laserjet_4730_mfp::::::::	1
Hardware	Hp Color Laserjet 5500 cpe:2.3:h:hp:color_laserjet_5500::::::::	1
Hardware	Hp Color Laserjet 5550 cpe:2.3:h:hp:color_laserjet_5550::::::::	1
Hardware	Hp Color Laserjet 8500 cpe:2.3:h:hp:color_laserjet_8500::::::::	1
Hardware	Hp Color Laserjet 8550 cpe:2.3:h:hp:color_laserjet_8550::::::::	1
Hardware	Hp Color Laserjet 9500 cpe:2.3:h:hp:color_laserjet_9500::::::::	1
Hardware	Hp Color Laserjet 9500 Mfp cpe:2.3:h:hp:color_laserjet_9500_mfp::::::::	1
Hardware	Hp Color Laserjet 9500Mfp cpe:2.3:h:hp:color_laserjet_9500mfp:20070719_05.011.2:::::::*	1
Hardware	Hp Color Mfp Cm8050 cpe:2.3:h:hp:color_mfp_cm8050:-:-:edgeline:::::*	1
Hardware	Hp Color Mfp Cm8060 cpe:2.3:h:hp:color_mfp_cm8060:-:-:edgeline:::::*	1
Hardware	Hp Digital Senders cpe:2.3:h:hp:digital_senders::::::::	1
Hardware	Hp Edgeline Printers cpe:2.3:h:hp:edgeline_printers::::::::	1
Hardware	Hp Laserjet 1000 cpe:2.3:h:hp:laserjet_1000::::::::	1
Hardware	Hp Laserjet 1005 cpe:2.3:h:hp:laserjet_1005::::::::	1
Hardware	Hp Laserjet 1010 cpe:2.3:h:hp:laserjet_1010::::::::	1
Hardware	Hp Laserjet 1012 cpe:2.3:h:hp:laserjet_1012::::::::	1
Hardware	Hp Laserjet 1015 cpe:2.3:h:hp:laserjet_1015::::::::	1
Hardware	Hp Laserjet 1018 cpe:2.3:h:hp:laserjet_1018::::::::	1
Hardware	Hp Laserjet 1018S cpe:2.3:h:hp:laserjet_1018s::::::::	1
Hardware	Hp Laserjet 1020 cpe:2.3:h:hp:laserjet_1020::::::::	1
Hardware	Hp Laserjet 1020 Plus cpe:2.3:h:hp:laserjet_1020_plus::::::::	1
Hardware	Hp Laserjet 1022 cpe:2.3:h:hp:laserjet_1022::::::::	1
Hardware	Hp Laserjet 1022N cpe:2.3:h:hp:laserjet_1022n::::::::	1
Hardware	Hp Laserjet 1022Nw cpe:2.3:h:hp:laserjet_1022nw::::::::	1
Hardware	Hp Laserjet 1100 cpe:2.3:h:hp:laserjet_1100::::::::	1
Hardware	Hp Laserjet 1150 cpe:2.3:h:hp:laserjet_1150::::::::	1
Hardware	Hp Laserjet 1160 cpe:2.3:h:hp:laserjet_1160::::::::	1
Hardware	Hp Laserjet 1200 cpe:2.3:h:hp:laserjet_1200::::::::	1
Hardware	Hp Laserjet 1300 cpe:2.3:h:hp:laserjet_1300::::::::	1
Hardware	Hp Laserjet 1320 cpe:2.3:h:hp:laserjet_1320::::::::	1
Hardware	Hp Laserjet 2 cpe:2.3:h:hp:laserjet_2::::::::	1
Hardware	Hp Laserjet 2000 cpe:2.3:h:hp:laserjet_2000::::::::	1
Hardware	Hp Laserjet 2100 cpe:2.3:h:hp:laserjet_2100::::::::	1
Hardware	Hp Laserjet 2200 cpe:2.3:h:hp:laserjet_2200::::::::	1
Hardware	Hp Laserjet 2200Dtn cpe:2.3:h:hp:laserjet_2200dtn::::::::	1
Hardware	Hp Laserjet 2300 cpe:2.3:h:hp:laserjet_2300::::::::	1
Hardware	Hp Laserjet 2300Dn cpe:2.3:h:hp:laserjet_2300dn::::::::	1
Hardware	Hp Laserjet 2400 cpe:2.3:h:hp:laserjet_2400::::::::	1
Hardware	Hp Laserjet 2410 cpe:2.3:h:hp:laserjet_2410:20070410_08.112.3:::::::*	1
Hardware	Hp Laserjet 2420 cpe:2.3:h:hp:laserjet_2420:20070410_08.112.3:::::::*	1
Hardware	Hp Laserjet 2430 cpe:2.3:h:hp:laserjet_2430:20070410_08.112.3:::::::* cpe:2.3:h:hp:laserjet_2430::::::::	2
Hardware	Hp Laserjet 2500 cpe:2.3:h:hp:laserjet_2500::::::::	1
Hardware	Hp Laserjet 2500C cpe:2.3:h:hp:laserjet_2500c::::::::	1
Hardware	Hp Laserjet 2600C cpe:2.3:h:hp:laserjet_2600c::::::::	1
Hardware	Hp Laserjet 2600N cpe:2.3:h:hp:laserjet_2600n::::::::	1
Hardware	Hp Laserjet 3000 cpe:2.3:h:hp:laserjet_3000::::::::	1
Hardware	Hp Laserjet 3700 cpe:2.3:h:hp:laserjet_3700::::::::	1
Hardware	Hp Laserjet 4 cpe:2.3:h:hp:laserjet_4::::::::	1
Hardware	Hp Laserjet 4 Plus/M Plus cpe:2.3:h:hp:laserjet_4_plus/m_plus::::::::	1
Hardware	Hp Laserjet 4/4m cpe:2.3:h:hp:laserjet_4/4m::::::::	1
Hardware	Hp Laserjet 4000 cpe:2.3:h:hp:laserjet_4000::::::::	1
Hardware	Hp Laserjet 4000N cpe:2.3:h:hp:laserjet_4000n::::::::	1
Hardware	Hp Laserjet 4050 cpe:2.3:h:hp:laserjet_4050::::::::	1
Hardware	Hp Laserjet 4100 cpe:2.3:h:hp:laserjet_4100::::::::	1
Hardware	Hp Laserjet 4100 Mfp cpe:2.3:h:hp:laserjet_4100_mfp::::::::	1
Hardware	Hp Laserjet 4100Mfp cpe:2.3:h:hp:laserjet_4100mfp::::::::	1
Hardware	Hp Laserjet 4200 cpe:2.3:h:hp:laserjet_4200::::::::	1
Hardware	Hp Laserjet 4200Dtn cpe:2.3:h:hp:laserjet_4200dtn::::::::	1
Hardware	Hp Laserjet 4200Ln cpe:2.3:h:hp:laserjet_4200ln::::::::	1
Hardware	Hp Laserjet 4240 cpe:2.3:h:hp:laserjet_4240::::::::	1
Hardware	Hp Laserjet 4240N cpe:2.3:h:hp:laserjet_4240n::::::::	1
Hardware	Hp Laserjet 4250 cpe:2.3:h:hp:laserjet_4250:20080319_08.015.0:::::::* cpe:2.3:h:hp:laserjet_4250::::::::	2
Hardware	Hp Laserjet 4300 cpe:2.3:h:hp:laserjet_4300::::::::	1
Hardware	Hp Laserjet 4345 Mfp cpe:2.3:h:hp:laserjet_4345_mfp::::::::	1
Hardware	Hp Laserjet 4345Mfp cpe:2.3:h:hp:laserjet_4345mfp:20081211_09.131.1:::::::*	1
Hardware	Hp Laserjet 4350 cpe:2.3:h:hp:laserjet_4350:20080319_08.015.0:::::::* cpe:2.3:h:hp:laserjet_4350::::::::	2
Hardware	Hp Laserjet 4350Dtn cpe:2.3:h:hp:laserjet_4350dtn::::::::	1
Hardware	Hp Laserjet 4650Dn cpe:2.3:h:hp:laserjet_4650dn::::::::	1
Hardware	Hp Laserjet 4L/Ml cpe:2.3:h:hp:laserjet_4l/ml::::::::	1
Hardware	Hp Laserjet 4M Plus cpe:2.3:h:hp:laserjet_4m_plus::::::::	1
Hardware	Hp Laserjet 4P/Mp cpe:2.3:h:hp:laserjet_4p/mp::::::::	1
Hardware	Hp Laserjet 4Si cpe:2.3:h:hp:laserjet_4si::::::::	1
Hardware	Hp Laserjet 4V/Mv cpe:2.3:h:hp:laserjet_4v/mv::::::::	1
Hardware	Hp Laserjet 5 cpe:2.3:h:hp:laserjet_5::::::::	1
Hardware	Hp Laserjet 5/M/N cpe:2.3:h:hp:laserjet_5/m/n::::::::	1
Hardware	Hp Laserjet 500 Plus cpe:2.3:h:hp:laserjet_500_plus::::::::	1
Hardware	Hp Laserjet 5000 cpe:2.3:h:hp:laserjet_5000:r.25.47:::::::* cpe:2.3:h:hp:laserjet_5000:r.25.15:::::::* cpe:2.3:h:hp:laserjet_5000::::::::	3
Hardware	Hp Laserjet 5100 cpe:2.3:h:hp:laserjet_5100:v.29.12:::::::* cpe:2.3:h:hp:laserjet_5100::::::::	2
Hardware	Hp Laserjet 5100Dtn cpe:2.3:h:hp:laserjet_5100dtn::::::::	1
Hardware	Hp Laserjet 5200 cpe:2.3:h:hp:laserjet_5200::::::::	1
Hardware	Hp Laserjet 5L cpe:2.3:h:hp:laserjet_5l::::::::	1
Hardware	Hp Laserjet 5M cpe:2.3:h:hp:laserjet_5m::::::::	1
Hardware	Hp Laserjet 5P/Mp cpe:2.3:h:hp:laserjet_5p/mp::::::::	1
Hardware	Hp Laserjet 5Si cpe:2.3:h:hp:laserjet_5si::::::::	1
Hardware	Hp Laserjet 8000 cpe:2.3:h:hp:laserjet_8000::::::::	1
Hardware	Hp Laserjet 8100 cpe:2.3:h:hp:laserjet_8100::::::::	1
Hardware	Hp Laserjet 8150 cpe:2.3:h:hp:laserjet_8150::::::::	1
Hardware	Hp Laserjet 8150Dn cpe:2.3:h:hp:laserjet_8150dn::::::::	1
Hardware	Hp Laserjet 9000 cpe:2.3:h:hp:laserjet_9000::::::::	1
Hardware	Hp Laserjet 9000 Mfp cpe:2.3:h:hp:laserjet_9000_mfp::::::::	1
Hardware	Hp Laserjet 9000Mfp cpe:2.3:h:hp:laserjet_9000mfp::::::::	1
Hardware	Hp Laserjet 9040 cpe:2.3:h:hp:laserjet_9040:20080204_08.110.0:::::::* cpe:2.3:h:hp:laserjet_9040::::::::	2
Hardware	Hp Laserjet 9040Mfp cpe:2.3:h:hp:laserjet_9040mfp:20080204_08.110.0:::::::* cpe:2.3:h:hp:laserjet_9040mfp::::::::	2
Hardware	Hp Laserjet 9050 cpe:2.3:h:hp:laserjet_9050:20080204_08.110.0:::::::* cpe:2.3:h:hp:laserjet_9050::::::::	2
Hardware	Hp Laserjet 9050 Mfp cpe:2.3:h:hp:laserjet_9050_mfp::::::::	1
Hardware	Hp Laserjet 9050Mfp cpe:2.3:h:hp:laserjet_9050mfp:20080204_08.110.0:::::::* cpe:2.3:h:hp:laserjet_9050mfp::::::::	2
Hardware	Hp Laserjet 9055 cpe:2.3:h:hp:laserjet_9055::::::::	1
Hardware	Hp Laserjet 9065 cpe:2.3:h:hp:laserjet_9065::::::::	1
Hardware	Hp Laserjet 9500 cpe:2.3:h:hp:laserjet_9500::::::::	1
Hardware	Hp Laserjet 9500Mfp cpe:2.3:h:hp:laserjet_9500mfp::::::::	1
Hardware	Hp Laserjet Ii cpe:2.3:h:hp:laserjet_ii::::::::	1
Hardware	Hp Laserjet Iid cpe:2.3:h:hp:laserjet_iid::::::::	1
Hardware	Hp Laserjet Iii cpe:2.3:h:hp:laserjet_iii::::::::	1
Hardware	Hp Laserjet Iiid cpe:2.3:h:hp:laserjet_iiid::::::::	1
Hardware	Hp Laserjet Iiip cpe:2.3:h:hp:laserjet_iiip::::::::	1
Hardware	Hp Laserjet Iiisi cpe:2.3:h:hp:laserjet_iiisi::::::::	1
Hardware	Hp Laserjet Iip cpe:2.3:h:hp:laserjet_iip::::::::	1
Hardware	Hp Laserjet Iip Plus cpe:2.3:h:hp:laserjet_iip_plus::::::::	1
Hardware	Hp Laserjet M1522N Mfp cpe:2.3:h:hp:laserjet_m1522n_mfp::::::::	1
Hardware	Hp Laserjet M3027 Mfp cpe:2.3:h:hp:laserjet_m3027_mfp::::::::	1
Hardware	Hp Laserjet M3035 Mfp cpe:2.3:h:hp:laserjet_m3035_mfp::::::::	1
Hardware	Hp Laserjet M4345 Mfp cpe:2.3:h:hp:laserjet_m4345_mfp::::::::	1
Hardware	Hp Laserjet M5025 Mfp cpe:2.3:h:hp:laserjet_m5025_mfp::::::::	1
Hardware	Hp Laserjet M5035 Mfp cpe:2.3:h:hp:laserjet_m5035_mfp::::::::	1
Hardware	Hp Laserjet P1000 cpe:2.3:h:hp:laserjet_p1000::::::::	1
Hardware	Hp Laserjet P1005 cpe:2.3:h:hp:laserjet_p1005::::::::	1
Hardware	Hp Laserjet P1006 cpe:2.3:h:hp:laserjet_p1006::::::::	1
Hardware	Hp Laserjet P1007 cpe:2.3:h:hp:laserjet_p1007::::::::	1
Hardware	Hp Laserjet P1008 cpe:2.3:h:hp:laserjet_p1008::::::::	1
Hardware	Hp Laserjet P1009 cpe:2.3:h:hp:laserjet_p1009::::::::	1
Hardware	Hp Laserjet P1500 cpe:2.3:h:hp:laserjet_p1500::::::::	1
Hardware	Hp Laserjet P1505 cpe:2.3:h:hp:laserjet_p1505::::::::	1
Hardware	Hp Laserjet P1505N cpe:2.3:h:hp:laserjet_p1505n::::::::	1
Hardware	Hp Laserjet P2000 cpe:2.3:h:hp:laserjet_p2000::::::::	1
Hardware	Hp Laserjet P2010 cpe:2.3:h:hp:laserjet_p2010::::::::	1
Hardware	Hp Laserjet P2015 cpe:2.3:h:hp:laserjet_p2015::::::::	1
Hardware	Hp Laserjet P2030 cpe:2.3:h:hp:laserjet_p2030::::::::	1
Hardware	Hp Laserjet P2050 cpe:2.3:h:hp:laserjet_p2050::::::::	1
Hardware	Hp Laserjet P3000 cpe:2.3:h:hp:laserjet_p3000::::::::	1
Hardware	Hp Laserjet P3005 cpe:2.3:h:hp:laserjet_p3005::::::::	1
Hardware	Hp Laserjet P4010 cpe:2.3:h:hp:laserjet_p4010::::::::	1
Hardware	Hp Laserjet P4014 cpe:2.3:h:hp:laserjet_p4014::::::::	1
Hardware	Hp Laserjet P4015 cpe:2.3:h:hp:laserjet_p4015::::::::	1
Hardware	Hp Laserjet P4500 cpe:2.3:h:hp:laserjet_p4500::::::::	1
Hardware	Hp Laserjet P4510 cpe:2.3:h:hp:laserjet_p4510::::::::	1

Open Source Vulnerability Database (OSVDB)

Id	Description
52849	HP Embedded Web Server (EWS) hp/device/set_config_password.html/config Multip...
52848	HP Embedded Web Server (EWS) hp/device/config_result_YesNo.html/config NetIPC...
52847	HP Embedded Web Server (EWS) Print Documents Unspecified CSRF

Sources (Detail)

Source	Url
BID	http://www.securityfocus.com/bid/34143
BUGTRAQ	http://www.securityfocus.com/archive/1/501884/100/0/threaded
HP	http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01684566
MISC	http://www.louhinetworks.fi/advisory/HP_20090317.txt
OSVDB	http://osvdb.org/52847 http://osvdb.org/52848 http://osvdb.org/52849
VUPEN	http://www.vupen.com/english/advisories/2009/0754

Alert History

If you want to see full details history, please login or register.

Date	Informations
2021-05-04 12:09:17	Multiple Updates
2021-04-22 01:09:37	Multiple Updates
2020-05-23 00:23:30	Multiple Updates
2018-10-11 00:19:32	Multiple Updates
2016-06-28 17:37:10	Multiple Updates
2016-04-26 18:42:08	Multiple Updates
2013-05-10 23:46:46	Multiple Updates

Type	Count
CWE ID(s)	1
CPE ID(s)	164
Sources(s)	8
osvdb(s)	3

5.1 - CVE-2009-0940

Executive Summary

Security-Database Scoring CVSS v3

Security-Database Scoring CVSS v2

Detail

Original Source

CWE : Common Weakness Enumeration

CPE : Common Platform Enumeration

Open Source Vulnerability Database (OSVDB)

Sources (Detail)

Alert History

Global Informations

Open Standards

Other Databases

COMPANY

STANDARDS

RECENT POSTS

MENU