Canon ImageRUNNER SMTP Arbitrary Content Printing

Medium Nessus Plugin ID 14819


The remote printer has a denial of service vulnerability.


The remote host seems to be a Canon ImageRUNNER printer, which runs a SMTP service.

It is possible to send an email to the SMTP service and have it printed out. An attacker may use this flaw to send an endless stream of emails to the remote device and cause a denial of service by using all of the print paper.


Disable the email printing service via the device's web interface.

See Also

Plugin Details

Severity: Medium

ID: 14819

File Name: canon_print_by_smtp.nasl

Version: $Revision: 1.19 $

Type: remote

Published: 2004/09/24

Modified: 2016/11/15

Dependencies: 10263

Risk Information

Risk Factor: Medium


Base Score: 5

Temporal Score: 4.3

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

Temporal Vector: CVSS2#E:F/RL:TF/RC:ND

Vulnerability Information

Exploit Available: true

Exploit Ease: Exploits are available

Vulnerability Publication Date: 2004/09/23

Reference Information

CVE: CVE-1999-0564, CVE-2004-2166

BID: 11247

OSVDB: 132, 9346