root@dafthack:~#‎ > ‎

Samsung Printer Backdoor Administrative Account

posted Nov 28, 2012, 5:53 AM by Beau Bullock
Some models of Samsung printers made before October 31, 2012 contain a hardcoded account.  A hardcoded SNMP full read-write community string remains active even when SNMP is disabled in the printer management utility.  Samsung has stated they will be releasing a patch tool later this year. 
 
From US-CERT:
"A remote, unauthenticated attacker could access an affected device with administrative privileges. Secondary impacts include: the ability to make changes to the device configuration, access to sensitive information (e.g., device and network information, credentials, and information passed to the printer), and the ability to leverage further attacks through arbitrary code execution."
Comments