Difference between revisions of "Information disclosure"
From Hacking Printers
(Created page with "''Currently, the following denial of service techniques are discussed in this wiki:'' * Memory access – Dumping the printer's NVRAM using proprietary PJL commands * F...") |
|||
| (2 intermediate revisions by the same user not shown) | |||
| Line 1: | Line 1: | ||
| − | ''Currently, the following | + | Apart from print jobs, printers may contain further potentially sensitive information like passwords – not only for the device itself but sometimes even to the surrounding network environment. |
| + | |||
| + | ''Currently, the following information disclosure categories are discussed in this wiki:'' | ||
* [[Memory access]] – Dumping the printer's NVRAM using proprietary PJL commands | * [[Memory access]] – Dumping the printer's NVRAM using proprietary PJL commands | ||
* [[File system access]] – Performing file system operations using PostScript and PJL | * [[File system access]] – Performing file system operations using PostScript and PJL | ||
* [[Credential disclosure]] – Obtaining PJL and PostScript passwords by brute-force attacks | * [[Credential disclosure]] – Obtaining PJL and PostScript passwords by brute-force attacks | ||
Latest revision as of 18:17, 15 January 2017
Apart from print jobs, printers may contain further potentially sensitive information like passwords – not only for the device itself but sometimes even to the surrounding network environment.
Currently, the following information disclosure categories are discussed in this wiki:
- Memory access – Dumping the printer's NVRAM using proprietary PJL commands
- File system access – Performing file system operations using PostScript and PJL
- Credential disclosure – Obtaining PJL and PostScript passwords by brute-force attacks
