Difference between revisions of "Information disclosure"
From Hacking Printers
Line 1: | Line 1: | ||
+ | Apart from print jobs, printers may contain further potentially sensitive information like passwords – not only for the device itself but sometimes even to the network environment. | ||
+ | |||
''Currently, the following information disclosure categories are discussed in this wiki:'' | ''Currently, the following information disclosure categories are discussed in this wiki:'' | ||
Revision as of 18:15, 15 January 2017
Apart from print jobs, printers may contain further potentially sensitive information like passwords – not only for the device itself but sometimes even to the network environment.
Currently, the following information disclosure categories are discussed in this wiki:
- Memory access – Dumping the printer's NVRAM using proprietary PJL commands
- File system access – Performing file system operations using PostScript and PJL
- Credential disclosure – Obtaining PJL and PostScript passwords by brute-force attacks