Information disclosure
From Hacking Printers
Revision as of 18:15, 15 January 2017 by 92.227.58.56 (Talk)
Apart from print jobs, printers may contain further potentially sensitive information like passwords – not only for the device itself but sometimes even to the network environment.
Currently, the following information disclosure categories are discussed in this wiki:
- Memory access – Dumping the printer's NVRAM using proprietary PJL commands
- File system access – Performing file system operations using PostScript and PJL
- Credential disclosure – Obtaining PJL and PostScript passwords by brute-force attacks