Anyone know any vulnerabilities in HP 9100C Digital Sender????

["Dankers, Sean (Contractor)" <DankersS () ncr disa mil>]

HP 9100C Digital Sender scans documents to PDFs and then e-mails them to a
recipient of choice. Configuration requires the following:

 - A static IP address ( it has been assigned one already )
 - The IP address of an SMTP server to allow mail relay for the device
 - The IP address of an LDAP server to allow address resolution
 - An e-mail account to receive its error messages

The device is also web-accessible over port 4242, which allows it to be
configured remotely, including accessing all the capabilities. As it
currently has no configuration and is sitting wide-open. I've asked the
client to turn it off until we have had a chance to look at it. My question
to you is: Is this a device that we should allow on the network from a
security standpoint?  

Thank you,
Sean H Dankers
DISA/CIO - INFOSEC Analyst
DSN: 761-2560
Comm: (703) 681-2560
Fax: (703) 681-1795
dankerss () ncr disa mil