[26354] in bugtraq

home help back first fref pref prev next nref lref last post

0815 ++ */ SEH_Web

daemon@ATHENA.MIT.EDU (kim0)
Sat Jul 27 12:16:28 2002

Message-ID: <3D427057.4060001@phenoelit.de>
Date: Sat, 27 Jul 2002 12:05:11 +0200
From: kim0 <kim0@phenoelit.de>
Reply-To: kim0@phenoelit.de
MIME-Version: 1.0
To: darklab@darklab.org, vuln-dev@securityfocus.com, bugtraq@securityfocus.com
Content-Type: multipart/mixed;
 boundary="------------040607080400080008070406"

--------------040607080400080008070406
Content-Type: text/plain; charset=us-ascii; format=flowed
Content-Transfer-Encoding: 7bit


-- 
            kim0   <kim0@phenoelit.de>
        Phenoelit (http://www.phenoelit.de)
90C0 969C EC71 01DC 36A0  FBEF 2D72 33C0 77FC CD42

--------------040607080400080008070406
Content-Type: text/plain;
 name="SEH_Web.txt"
Content-Transfer-Encoding: 7bit
Content-Disposition: inline;
 filename="SEH_Web.txt"

Phenoelit Advisory <wir-haben-auch-mal-was-gefunden #0815 +--+>

[ Authors ]
	FX		<fx@phenoelit.de>
	kim0 		<kim0@phenoelit.de>	

	Phenoelit Group	(http://www.phenoelit.de)
	Advisory	http://www.phenoelit.de/stuff/SEH_Web.txt

[ Affected Products ]
	SEH GmbH
			IC9 Pocket Print Server

	Tested on
                        SEH IC9 (Firmware 7.1.30 and 7.1.36f)

	SEH Bug ID:	Not assigned

[ Vendor communication ]
        06/29/02        Initial Notification, support@seh.de
                        *Note-Initial notification includes
                        a cc to cert@cert.org
        06/29/02        Auto-Responder reply from SEH
        07/01/02        Human ack. from SEH, denial that problem exists
                        along with new firmware version
        07/01/01        Despite fact that phenoelit is not a software 
			test-lab, we confirmed that problem exists in new 
			firmware as well and passed info to vendor
        07/19/02        Notification of intent to post publically
                        in apx. 7 days.

[ Overview ]
	The IC9 Pocket Print Server is a small pocket sized network 
	interface for printers. 
	
[ Description ]
	By sending an oversized administrative password using the 
	web-interface, an attacker can cause the print server device to reboot 
	itself (and reset the printer attached).

[ Example ]
	Enter a password for the administrator that is 300 characters or more 
	and <click> the button.

[ Solution ]
	None known at this time. 


[ end of file ]



--------------040607080400080008070406--
home help back first fref pref prev next nref lref last post