ID CVE-2013-4614
Summary English/pages_MacUS/wls_set_content.html on the Canon MG3100, MG5300, MG6100, MP495, MX340, MX870, MX890, MX920, and MX922 printers shows the Wi-Fi PSK passphrase in cleartext, which allows physically proximate attackers to obtain sensitive information by reading the screen of an unattended workstation.
References
Vulnerable Configurations
  • cpe:2.3:h:canon:mg3100_printer
    cpe:2.3:h:canon:mg3100_printer
  • cpe:2.3:h:canon:mg5300_printer
    cpe:2.3:h:canon:mg5300_printer
  • cpe:2.3:h:canon:mg6100_printer
    cpe:2.3:h:canon:mg6100_printer
  • cpe:2.3:h:canon:mp495_printer
    cpe:2.3:h:canon:mp495_printer
  • cpe:2.3:h:canon:mp340_printer
    cpe:2.3:h:canon:mp340_printer
  • cpe:2.3:h:canon:mx922_printer
    cpe:2.3:h:canon:mx922_printer
  • cpe:2.3:h:canon:mx870_printer
    cpe:2.3:h:canon:mx870_printer
  • cpe:2.3:h:canon:mx890_printer
    cpe:2.3:h:canon:mx890_printer
  • cpe:2.3:h:canon:mx920_printer
    cpe:2.3:h:canon:mx920_printer
CVSS
Base: 2.1 (as of 24-06-2013 - 18:28)
Impact:
Exploitability:
CWE CWE-255
CAPEC
Access
VectorComplexityAuthentication
LOCAL LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL NONE NONE
metasploit via4
description This module enumerates wireless credentials from Canon printers with a web interface. It has been tested on Canon models: MG3100, MG5300, MG6100, MP495, MX340, MX870, MX890, MX920.
id MSF:AUXILIARY/SCANNER/HTTP/CANON_WIRELESS
last seen 2019-03-23
modified 2017-07-24
published 2013-05-27
reliability Normal
reporter Rapid7
source https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/scanner/http/canon_wireless.rb
title Canon Printer Wireless Configuration Disclosure
nessus via4
NASL family CGI abuses
NASL id CANON_PIXMA_WLAN_CRED_DISCLOSURE.NASL
description The remote printer contains a flaw that could allow a remote attacker to obtain sensitive information. The HTTP admin interface contains WLAN authentication information (WEP/WPA/WPA2) in plaintext.
last seen 2019-02-21
modified 2018-11-15
plugin id 73376
published 2014-04-07
reporter Tenable
source https://www.tenable.com/plugins/index.php?view=single&id=73376
title Canon PIXMA Printer WLAN Credential Disclosure
packetstorm via4
data source https://packetstormsecurity.com/files/download/122073/canon-passworddisclosedos.txt
id PACKETSTORM:122073
last seen 2016-12-05
published 2013-06-18
reporter Matt Andreko
source https://packetstormsecurity.com/files/122073/Canon-Printer-DoS-Secret-Disclosure.html
title Canon Printer DoS / Secret Disclosure
refmap via4
fulldisc 20130618 Canon Wireless Printer Disclosure & DoS
misc
Last major update 24-06-2013 - 18:30
Published 21-06-2013 - 17:55
Back to Top