Exploitation Summary
EIP tracks 4 public exploits for CVE-2010-4107. PoCs published by n.runs AG, @0x00string, Myo Soe.
AI-analyzed exploit summary This exploit demonstrates a directory traversal vulnerability in HP LaserJet MFP devices via the PJL interface. It uses a crafted PJL command to list files in the root directory by sending a payload over port 9100.
Description
The default configuration of the PJL Access value in the File System External Access settings on HP LaserJet MFP printers, Color LaserJet MFP printers, and LaserJet 4100, 4200, 4300, 5100, 8150, and 9000 printers enables PJL commands that use the device's filesystem, which allows remote attackers to read arbitrary files via a command inside a print job, as demonstrated by a directory traversal attack.
Exploits (4)
This exploit demonstrates a directory traversal vulnerability in HP LaserJet MFP devices via the PJL interface. It uses a crafted PJL command to list files in the root directory by sending a payload over port 9100.
This exploit leverages a directory traversal vulnerability in HP LaserJet printers via PJL (Printer Job Language) to inject persistent JavaScript XSS into the ews_functions.js file. It sends crafted PJL commands to the printer's port 9100 to append malicious JavaScript payloads.
This Metasploit auxiliary module exploits CVE-2010-4107 by sending crafted PJL (Printer Job Language) commands to HP JetDirect printers, allowing arbitrary file read and directory listing via path traversal. It supports both one-time command execution and interactive mode.
This Metasploit module exploits a path traversal vulnerability in HP JetDirect PJL interface, allowing unauthorized directory listing and file reading on affected HP network-enabled printers via port 9100.