US-CERT: Samsung Printer Firmware Contains Backdoor

  /     /     /  
Publicated : 22/11/2024   Category : security


US-CERT: Samsung Printer Firmware Contains Backdoor


Samsung printers contain a hard-coded account that could allow a remote attacker to take control



Samsung printers manufactured before October of this year contain a backdoor account that could allow hackers to take control of them remotely, a researcher reported to US-CERT this week.
According to a
vulnerability report made to US-CERT by researcher Neil Smith
, Samsung printers -- as well as some Dell printers manufactured by Samsung -- contain a hard-coded SNMP full read-write community string that remains active even when SNMP is disabled in the printer management utility.
The Simple Network Management Protocol (SNMP) is used to monitor the status of remote devices.
Using this backdoor account, a remote, unauthenticated attacker could access an affected device with administrative privileges, according to US-CERT. Such access could enable an attacker to make changes to the device configuration, gain access to sensitive information -- such as device and network information, credentials, and information passed to the printer -- and execute further attacks through arbitrary code.
Samsung and Dell have stated that models released after Oct. 31, 2012, are not affected by this vulnerability. Both companies said they will be releasing a patch tool later this year to address vulnerable devices.
Smith suggested that blocking the custom SNMP trap port of 1118/udp will help mitigate the risks posed by the backdoor.
Have a comment on this story? Please click Add a Comment below. If youd like to contact
Dark Readings
editors directly,
send us a message
.

Last News

▸ DHS-funded SWAMP scans code for bugs. ◂
Discovered: 23/12/2024
Category: security

▸ Debunking Machine Learning in Security. ◂
Discovered: 23/12/2024
Category: security

▸ Researchers create BlackForest to gather, link threat data. ◂
Discovered: 23/12/2024
Category: security


Cyber Security Categories
Google Dorks Database
Exploits Vulnerability
Exploit Shellcodes

CVE List
Tools/Apps
News/Aarticles

Phishing Database
Deepfake Detection
Trends/Statistics & Live Infos



Tags:
US-CERT: Samsung Printer Firmware Contains Backdoor