[Dshield] Known instances of malware using printers as an attack vector?

Jeff Lake jlake at kcso.org
Wed Feb 28 16:12:55 GMT 2007


> On 2/27/07, ed.truitt at etee2k.net <ed.truitt at etee2k.net> wrote:
>> I have been asked to look into whether our network printers present a
>> level of risk to the network that is higher than has been the case in
>> previous years.  In order to answer that question, I was wondering if
>> anyone has solid evidence of the following:
>>
>> * Malware (of whatever type) that actually attacks printers, or uses a
>> vulnerability found on a network printer to propogate
>>
>> * An increase in vendor disclosures of vulnerabilities in their
>> printing products, and specifically an increase in the number of
>> security fixes (patches) issued for printer-related vulnerabilities
>>
>> TIA for any assistance you can provide.
>>
>> ~Ed T.
>> _________________________________________

There was a page on this here:
www.irongeek.com/i.php?page=security/networkprinterhacking

not sure if it helps or not.

I seem to think someone on this list years ago mentioned files
surreptitiously being stored on a MFC/Printer in an ftp directory. I
could be mistaken.
JL



-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 252 bytes
Desc: OpenPGP digital signature
Url : http://lists.sans.org/pipermail/list/attachments/20070228/2a7dbdaa/attachment.bin 


More information about the list mailing list