Published:2006/10/20  Last Updated:2008/05/21

JVN#63999575
NEC MultiWriter 1700C web server authentication bypass vulnerability

Overview

Certain NEC printers have build-in web servers. They contain a vulnerability, where unauthorized users could change the system configuration.

Products Affected

  • NEC MultiWriter 1700C (model number: PR-L1700C)
  • Network Expansion Card PR-L1700C-MC
For more information, refer to the vendor's website.

Description

Impact

A remote attacker could change the system configuration of the printer's built-in web server.

Solution

Vendor Status

Vendor Status Last Update Vendor Notes
NEC Corporation Vulnerable 2006/10/20

References

JPCERT/CC Addendum

Credit

Other Information

JPCERT Alert
JPCERT Reports
CERT Advisory
CPNI Advisory
TRnotes
CVE
JVN iPedia JVNDB-2006-000736

Update History