This script is Copyright (C) 2011-2016 Tenable Network Security, Inc.
The remote Windows host contains an application that is affected by
an authentication bypass vulnerability.
The remote Windows host contains HP MFP Digital Sending Software
version 4.91.0. This version is potentially affected by an
authentication bypass vulnerability related to device configuration
A local attacker, exploiting this flaw, reportedly can gain
unauthorized access to functionality of an HP Multifunction Peripheral
(MFP) that is controlled by the HP MFP Digital Sending Software.
Note: the provided solution is needed only if authentication is
required and the previous device configuration template did not
include authentication settings.
See also :
At the time of this writing, a patch has not been provided by the
vendor. However, a workaround has been provided by the vendor:
- Require authentication for all device templates.
- For all devices previously configured via device
templates, reconfigure the devices with these revised
Risk factor :
Low / CVSS Base Score : 2.1
CVSS Temporal Score : 1.7
Public Exploit Available : true