ZDNet UK


Skip to Main Content

ZDNet.co.uk - Winner of Best Business Website 2007
  1. Home
  2. News
  3. Blogs
  4. Reviews
  5. Prices
  6. Resources
  7. Community
  8. My ZDNet

 

ZDNet UK RSS Feeds


IT Jobs

Security threats Toolkit

Xerox printers said to contain security hole

Graeme Wearden ZDNet.co.uk

Published: 04 Aug 2006 12:30 BST

  • Email
  • Trackback
  • Clip Link
  • Print friendly
  • Post Comment

A US security expert has identified vulnerabilities in Xerox's WorkCenter multifunction printers, reports have claimed.

According to IDG News Service, the flaws were discussed at the Black Hat security conference in Las Vegas. Brendan O'Connor, who works for an unnamed US finance company, claimed that malicious hackers could take advantage of a configuration error in the printers' Web interface.

This would let them run unauthorised software on the printers, compromise network traffic, and access sensitive information being printed on the machines, O'Connor claimed.

Back in February 2006, Xerox admitted that its WorkCenter and WorkCenter Pro products contained flaws that could be used to bypass certain security restrictions, or conduct cross-site scripting and denial of service attacks. It released a patch which it said fixed the problem.

O'Connor, on the other handy, has claimed the flaws can still be exploited.

Xerox UK was not immediately able to comment on the claims, but a company representative at Black Hat reportedly said that an updated patch would be released soon.

  • Email
  • Trackback
  • Clip Link
  • Print friendly Print with Dell

Did you find this article useful?
253 out of 353 people found this useful


Talkback

Post a comment


Full Talkback thread

0 comments

Related Links

More In Security threats



Company/Topic Alerts

Create a new alert from the list below:




Related Jobs

Messaging Support Analyst (AD,TREND protection,Exchange) BANKING

Other main functions of the role are troubleshooting & resolving cross platform message flow related issues, problem resolution & estate & patch ...

Messaging support analyst- Investment banking city based

Meeeting/Office Communicator server environment, including transition into full production support troubleshoot and resolve cross platform message ...

Linux/Solaris SA at top Global Bank! (RedHat,Solaris 8-10,Veritas)

The ideal candidate must have an in-depth financial banking background and an excellent knowledge of Solaris, Linux and HP-UX, as well as some ...

Featured Talkback

What was achieved there is recognised to be of fundamental importance to both winning the war (Churchill visited to say 'thank you' to them) and the development of the computer. Maybe Bill Gates doesn't want to support this museum because it underlines where electronic computing started i.e. here, not the U.S.

By: 1000103773

Read full story:
Bletchley Park faces bleak future

Sentry Posts Blog

Mobile Security Expert: Your Camera Ph...

Mobile Security Expert: Your Camera Phone Got Hacked Author: Eric Everson, Founder MyMobiSafe.com Have you ever heard someone say “I’d like to be a fly on the wall in that room.”?... More

Post a comment

Skype - The Roach Motel

Here is an interesting article from The National Business Review, pointing out once again that you can never delete a Skype account. Never. Period. This is something I am familiar... More

Post a comment

The vPhone: Why Visa Should Go Mobile

The vPhone: Why Visa Should Go Mobile Author: Eric Everson, Founder MyMobiSafe.com With all of the success of Apple’s iPhone, there is a growing case to support a company like Visa... More

Post a comment

Featured Oracle Resources

businessfirst: Ideas to help small companies retain their successful entrepreneurial spirit

Oracle ONE Magazine: Technology solutions for midsized businesses February 2008 edition

Choosing a Reliable and Powerful IT Infrastructure at a Price You Can Afford

Database Consolidation: Reducing Cost and Complexity

Ensuring Data Protection for Growing Business

Oracle for medium and emerging businesses: protect, strengthen and enhance your organisation

Oracle partner network solutions catalogue

See All White Papers