Description
HP LaserJet, and possibly other JetDirect devices, resets the admin password when the device is turned off, which could allow remote attackers to access the device without the password.
Affected products
- HP / jetadmin4.0 – 4.0
- HP / jetadmin4.1.2 – 4.1.2
- HP / jetadmin5.1 – 5.1
- HP / jetadmin5.5 – 5.5
- HP / jetadmin5.5.177 – 5.5.177
- HP / jetadmin5.6 – 5.6
- HP / jetadmin6.0 – 6.0
- HP / jetadmin6.1 – 6.1
- HP / jetadmin6.2 – 6.2