HP JetDirect Device SNMP Request Cleartext Admin Credential Disclosure

This script is Copyright (C) 2003-2015 Tenable Network Security, Inc.

Synopsis :

The administrative password of the remote HP JetDirect printer can be obtained
using SNMP.

Description :

It is possible to obtain the password of the remote HP JetDirect
web server by sending SNMP requests.

An attacker may use this information to gain administrative access
to the remote printer.

Solution :

Disable the SNMP service on the remote host if you do not use it,
or filter incoming UDP packets going to this port.


Risk factor :


Family: SNMP

Nessus Plugin ID: 11317 ()

Bugtraq ID: 5331

CVE ID: CVE-2002-1048

Ready to Scan Unlimited IPs & Run Compliance Checks?

Upgrade to Nessus Professional today!

Buy Now

Combine the Power of Nessus with the Ease of Cloud

Start your free Nessus Cloud trial now!

Begin Free Trial