Description
Directory traversal vulnerability in the HP JetDirect web administration interface in the HP-ChaiSOE 1.0 embedded web server on the LaserJet 9040mfp, LaserJet 9050mfp, and Color LaserJet 9500mfp before firmware 08.110.9; LaserJet 4345mfp and 9200C Digital Sender before firmware 09.120.9; Color LaserJet 4730mfp before firmware 46.200.9; LaserJet 2410, LaserJet 2420, and LaserJet 2430 before firmware 20080819 SPCL112A; LaserJet 4250 and LaserJet 4350 before firmware 20080819 SPCL015A; and LaserJet 9040 and LaserJet 9050 before firmware 20080819 SPCL110A allows remote attackers to read arbitrary files via directory traversal sequences in the URI.
Analysis
No analysis available yet.
Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||
|---|---|---|---|---|---|---|---|---|---|
| n/a | n/a | affected |
|
Configuration 1 [-]
|
No data.
No data available yet.
Remediation
No remediation available yet.
Tracking
Sign in to view the affected projects.
Advisories
| Source | ID | Title |
|---|---|---|
 EUVD |
EUVD-2008-4400 | Directory traversal vulnerability in the HP JetDirect web administration interface in the HP-ChaiSOE 1.0 embedded web server on the LaserJet 9040mfp, LaserJet 9050mfp, and Color LaserJet 9500mfp before firmware 08.110.9; LaserJet 4345mfp and 9200C Digital Sender before firmware 09.120.9; Color LaserJet 4730mfp before firmware 46.200.9; LaserJet 2410, LaserJet 2420, and LaserJet 2430 before firmware 20080819 SPCL112A; LaserJet 4250 and LaserJet 4350 before firmware 20080819 SPCL015A; and LaserJet 9040 and LaserJet 9050 before firmware 20080819 SPCL110A allows remote attackers to read arbitrary files via directory traversal sequences in the URI. |
References
History
No history.
Subscriptions
Hp
Subscribe
9200c Digital Sender
Subscribe
Color Laserjet 4370mfp
Subscribe
Color Laserjet 9500mfp
Subscribe
Laserjet 2410
Subscribe
Laserjet 2420
Subscribe
Laserjet 2430
Subscribe
Laserjet 4250
Subscribe
Laserjet 4345mfp
Subscribe
Laserjet 4350
Subscribe
Laserjet 9040
Subscribe
Laserjet 9040mfp
Subscribe
Laserjet 9050
Subscribe
Laserjet 9050mfp
Subscribe
MITRE
Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2024-08-07T10:17:09.295Z
Reserved: 2008-10-03T00:00:00.000Z
Link: CVE-2008-4419
Vulnrichment
No data.
NVD
Status : Modified
Published: 2009-02-05T00:30:00.203
Modified: 2026-04-23T00:35:47.467
Link: CVE-2008-4419
Redhat
No data.
OpenCVE Enrichment
No data.
Weaknesses