Published:2010/12/08 Last Updated:2010/12/08
JVN#62736872
Vulnerability in Epson printer driver installer where access permissions are changed
Overview
A vulnerability in printer driver installers provided by Epson cause access permissions to a certain folder on the system to be changed.
Products Affected
- Driver for LP-S9000 prior to Ver4.1.11 (32-bit and 64-bit)
- Driver for LP-S7100 prior to Ver4.1.7 (32-bit and 64-bit)
Also, users of Windows Vista and later operating systems are not affected.
Description
When printer drivers provided by Epson are installed, the access permissions for the folder that contains program files (C:\Program Files) are changed. As a result, users that do not have permission to access that folder can gain access to that folder.
Impact
A user that does not have permission to access the folder may create, modify or delete arbitrary files or folders.
Solution
Update the software and change the settings
Apply the update and change the settings, according to the information provided by the developer.
Vendor Status
| Vendor | Link |
| Seiko Epson Corporation | To the users of LP-S7100/LP-S9000: Notice on "Vulnerability due to Windows2000/XP/Server 2003 printer driver" (Japanese Only) |
References
JPCERT/CC Addendum
Vulnerability Analysis by JPCERT/CC
Analyzed on 2010.12.08
| Measures | Conditions | Severity |
|---|---|---|
| Access Required | requires you to login into the box to a shell or remote desktop |
|
| Authentication | login caused to be created by an administrator |
|
| User Interaction Required | the vulnerability can be exploited without an honest user taking any action |
|
| Exploit Complexity | some expertise and/or luck required (most buffer overflows, guessing correctly in small space, expertise in Windows function calls) |
|
Credit
Other Information
| JPCERT Alert | |
| JPCERT Reports | |
| CERT Advisory |
|
| CPNI Advisory |
|
| TRnotes |
|
| CVE |
CVE-2010-3920 |
| JVN iPedia |
JVNDB-2010-000059 |