CVE-2006-6742

Multiple buffer overflows in FTP Print Server 2.4 and 2.4.5 in HP LaserJet 5000 Series printers with firmware R.25.15 or R.25.47, and HP LaserJet 5100 Series printers with firmware V.29.12, allow remote attackers to cause a denial of service (device crash) via a long string in the (1) LIST or (2) NLST command.

Published: Dec 27, 2006
Updated: Apr 13, 2023
CVE: CVE-2006-6742
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.8
AV:N/AC:L/Au:N/C:N/I:N/A:C

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
hp / ftp_print_server	2.4	2.4.x
hp / ftp_print_server	2.4.5	2.4.5.x
hp / laserjet_5000	r.25.15	r.25.15.x
hp / laserjet_5100	.29.12	.29.12.x
hp / laserjet_5000	r.25.47	r.25.47.x

http://lists.grok.org.uk/pipermail/full-disclosure/2006-December/051367.html
http://secunia.com/advisories/23396
http://securityreason.com/securityalert/2074
http://www.securityfocus.com/archive/1/454817/100/0/threaded
http://www.vupen.com/english/advisories/2006/5081

Vulnerability Database

290,206

CVE-2006-6742