High-Severity PrinterLogic Flaws Enable Remote Code Execution
#1
Quote:The three flaws enable an unauthenticated attacker to launch remote code execution attacks on printers.

A slew of high-severity flaws have been disclosed in the PrinterLogic printer management service, which could enable a remote attacker to execute code on workstations running the PrinterLogic agent.
 
PrinterLogic’s Print Management software allows businesses to deploy and use remote printers. Unfortunately it has three flaws, which could allow an unauthenticated, remote attacker to remotely execute arbitrary code with admin privileges. No patch is currently available, according to an advisory.
 
“PrinterLogic versions up to and including 18.3.1.96 are vulnerable to multiple attacks,” according to a Friday advisory. “The PrinterLogic agent, running as SYSTEM, does not validate the PrinterLogic Management Portal’s SSL certificate, validate PrinterLogic update packages or sanitize web browser input.”

SOURCE: https://threatpost.com/printerlogic-remo...on/144383/
[-] The following 2 users say Thank You to silversurfer for this post:
  • harlan4096, Mohammad.Poorya
Reply


Forum Jump:


Users browsing this thread: 1 Guest(s)
[-]
Welcome
You have to register before you can post on our site.

Username/Email:


Password:





[-]
Recent Posts
QOwnNotes
26.7.3 New notes ...Kool — 03:49
Mozilla Firefox Browser 152.0.5
Mozilla Firefox Br...harlan4096 — 10:11
HWiNFO v8.48
HWiNFO v8.48 R...harlan4096 — 10:10
AdGuard for Mac 2.19
AdGuard for Mac 2....harlan4096 — 10:08
AnyViewer 5.8.0 for Windows
AnyViewer 5.8.0 fo...harlan4096 — 10:05

[-]
Birthdays
Today's Birthdays
avatar (48)ConradRoand
Upcoming Birthdays
avatar (46)RidgeDimb
avatar (37)ipumaqar
avatar (51)tanliorsPeri
avatar (43)lapedDow
avatar (49)rituabew
avatar (37)omyjul
avatar (41)papedDow
avatar (50)ArnoldFum
avatar (38)yfaza
avatar (49)Kevensi
avatar (39)boineDon
avatar (51)spoofTum
avatar (50)WillieVot
avatar (40)Grompelbawn
avatar (41)vkseogaF
avatar (37)usogy
avatar (40)ywixazok
avatar (38)ixoqe
avatar (36)pa.OpenTran

[-]
Online Staff
akiratoriyama's profile akiratoriyama
Administrator
harlan4096's profile harlan4096
Administrator

>