Two critical remote code execution (RCE) vulnerabilities have been identified in the communication protocols used by tens of millions of fax machines globally. Fax is still popular among several business organizations and bankers and there are more than 300 million fax numbers and 45 million fax machines in use globally. Most of the fax machines these days are connected with printers, a WiFi network and PSTN phone line, the attacker can seize control of the whole network by just send a specially-crafted image via fax. The attacker just needs the fax number in this case, which is publicly available information. The attackers could code the image file they plan to send with malware including ransomwares, cryptocurrency miners, or surveillance tools based on their motives.
The attack involves buffer overflow vulnerabilities which leads to remote code execution. The attack was demonstrated by Check Point Malware Research Team on HP Officejet Pro All-in-One fax printers, the HP Officejet Pro 6830 all-in-one printer and OfficeJet Pro 8720. HP quickly fixed the flaws in its all-in-one printers as soon as they got to know about the findings. However, the researchers believe that the same vulnerabilities could impact most of the fax-based all-in-one printers sold by other manufacturers as well.
https://thehackernews.com/2018/08/hack-printer-fax-machine.html
Leave a Reply
You must be logged in to post a comment.