Canon ImageRUNNER SMTP Arbitrary Content Printing

This script is Copyright (C) 2004-2011 Tenable Network Security, Inc.


Synopsis :

The remote printer has a denial of service vulnerability.

Description :

The remote host seems to be a Canon ImageRUNNER printer, which runs a
SMTP service.

It is possible to send an email to the SMTP service and have it
printed out. An attacker may use this flaw to send an endless stream
of emails to the remote device and cause a denial of service by using
all of the print paper.

See also :

http://archives.neohapsis.com/archives/bugtraq/2004-09/0307.html

Solution :

Disable the email printing service via the device's web interface.

Risk factor :

Medium / CVSS Base Score : 5.0
(CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P)
CVSS Temporal Score : 5.0
(CVSS2#E:H/RL:U/RC:ND)
Public Exploit Available : true

Family: SMTP problems

Nessus Plugin ID: 14819 (canon_print_by_smtp.nasl)

Bugtraq ID: 11247

CVE ID: CVE-1999-0564
CVE-2004-2166