HP sends out LaserJet printer patch alert
Even printers are now vulnerable to hackers, as HP warns LaserJet owners over remote vulnerability.
HP has alerted owners of its LaserJet printers of a vulnerability that could lead to unauthorised access of files stored on those printers.
In its security bulletin, HP said 13 different models were affected by the flaw, and said owners should download and apply a firmware patch as soon as possible.
According to a listing on the Common Vulnerabilities and Exposures website, the problem is a "directory traversal vulnerability in the HP JetDirect web administration interface".
Printers are not often thought of as a security risk, but with many now featuring hard disks on which potentially sensitive data could be stored, it makes sense to ensure they are secure.
"Printers tend to be low on the priority list of systems or devices to be patched, this one will likely linger for years to come," said analyst Adrien de Beaupre of the Internet Storm Center.
"The impact might not seem severe, as in the attacker can view the printer configuration, however viewing cached versions of printed documents can be. Other than patching, disallowing access to the web admin interface is likely the only other mitigation."
What you need to know about migrating to SAP S/4HANA
Factors to assess how and when to begin migrationDownload now
Your enterprise cloud solutions guide
Infrastructure designed to meet your company's IT needs for next-generation cloud applicationsDownload now
Testing for compliance just became easier
How you can use technology to ensure compliance in your organisationDownload now
Best practices for implementing security awareness training
How to develop a security awareness programme that will actually change behaviourDownload now