Penetration Testing mailing list archives

Previous By Date Next
Previous By Thread Next

RE: Dumping Data From Printers

From: "Paul Melson" <pmelson () gmail com>
Date: Thu, 8 May 2008 11:19:40 -0400
what would be the greatest risk if network admin leave Network printers

without password protected.

The capture of confidential data sent to the printer or, in the case of a
check printer, the printing (and possible mailing!) of a forged check.  Even
if the check is never mailed, there is a cost associated with cancelling and
balancing erroneous checks.  The ability to force a company to incur that
cost at will is a significant risk, even if it sounds a little dumb in your
report.

If you haven't already found it, Phenoelit has a tool called hijetter that
you may find useful, or at least entertaining.

PaulM



------------------------------------------------------------------------
This list is sponsored by: Cenzic

Need to secure your web apps NOW?
Cenzic finds more, "real" vulnerabilities fast.
Click to try it, buy it or download a solution FREE today!

http://www.cenzic.com/downloads
------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: