ISS X-Force Database: hp-laserjet-toolbox-directory-traversal(25627): HP Color LaserJet Toolbox directory traversal

HP Color LaserJet Toolbox directory traversal

hp-laserjet-toolbox-directory-traversal (25627)

Medium Risk

Description:

The HP Toolbox software could allow a remote attacker to traverse directories and gain access to arbitrary files on the system. An attacker could send a specially-crafted URL request containing "dot dot" (../) sequences to the HTTP interface on port 5225 to traverse directories and view arbitrary files on the system.

Consequences:

Obtain Information

Remedy:

Apply the HP Color LaserJet 2500/4600 Software Update (3.1 or later), as listed in Hewlett-Packard Company Security Bulletin HPSBPI2109 SSRT061141. See References.

References:

Full-Disclosure Mailing List, Tue Apr 04 2006 - 08:54:22 CDT: [SEC-1 LTD] HP Colour LaserJet 2500 and 4600 Toolbox Directory Traversal Vulnerability.
Hewlett-Packard Company Security Bulletin HPSBPI2109 SSRT061141 rev.1: HP Color LaserJet 2500 and 4600 Toolbox Running on Microsoft Windows Remote Unauthorized Disclosure of Information.
BID-17367: HP Color LaserJet 2500/4600 Toolbox Directory Traversal Vulnerability
CVE-2006-1654: Directory traversal vulnerability in the HP Color LaserJet 2500 Toolbox and Color LaserJet 4600 Toolbox on Microsoft Windows before 20060402 allows remote attackers to read arbitrary files via a .. (dot dot) in an HTTP GET request to TCP port 5225.
OSVDB ID: 24396: HP Color LaserJet 2500/4600 Toolbox Traversal Arbitrary File Access
SA19529: HP Color LaserJet 2500/4600 Toolbox Disclosure of Sensitive Information
SECTRACK ID: 1015862: HP Color LaserJet Toolbox Software Lets Remote Users View Files on the Target System
VUPEN/ADV-2006-1230: HP Color LaserJet Printers Toolbox Remote Directory Traversal Vulnerability

Platforms Affected:

HP Color LaserJet 2500
HP Color LaserJet 2500L
HP Color LaserJet 2500Lse
HP Color LaserJet 2500n
HP Color LaserJet 2500tn
HP Color LaserJet 4600
HP Color LaserJet 4600dn
HP Color LaserJet 4600dtn
HP Color LaserJet 4600hdn
Microsoft Windows 2003
Microsoft Windows 2003 Server x64
Microsoft Windows XP x64

Reported:

Apr 04, 2006

The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

For corrections or additions please email xforce@iss.net

Return to the main page