RE: redirecting a remote printer output into an attacker's printer

From: Robert A Smith (smithr@IAFACILITY.com)
Date: Tue Jul 05 2005 - 08:39:07 EDT

• Next message: Christoph Puppe: "Re: Providers blocking portscans - bad news for pentest?"
• Previous message: RCS: "Re: Providers blocking portscans - bad news for pentest?"
• Maybe in reply to: h_e_z_i@yahoo.com: "redirecting a remote printer output into an attacker's printer"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

HP printers have some common vulnerabilities flagged that may be of help, I
could use some help here also. Besides the common SNMP vulnerabilities, I am
trying to validate the NFS vulnerabilities showing up on our reports.
These are:
NFS mountable
NFS exports outside domain
NFS does not properly identify UID

If NFS is truly exploitable then you should be able to access the data with
another machine.
Any tools or advice would be greatly appreciated.

Thanks, Andy
 

-----Original Message-----
From: Bénoni MARTIN [mailto:Benoni.MARTIN@libertis.ga]
Sent: Tuesday, July 05, 2005 3:11 AM
To: Prashant Meswani; h_e_z_i@yahoo.com; pen-test@securityfocus.com
Subject: RE: redirecting a remote printer output into an attacker's printer

Dsniff group of tools can do this for you :)
 

-----Message d'origine-----
De : Prashant Meswani [mailto:prashant.meswani@ukonline.co.uk]
Envoyé : lundi 4 juillet 2005 20:41
À : h_e_z_i@yahoo.com; pen-test@securityfocus.com Objet : RE: redirecting a
remote printer output into an attacker's printer

I think you can use some tools that does Arp redirections or Man in the
Middle sniffing. I can't remember the tools of the top of my head, but I hope
this is a start in the right direction.

Regards,

Prashant Meswani, CEH

The opinions expressed in this email are those of my own and does not
represent those of any organisation or associations to which I belong to
unless stated otherwise.

-----Original Message-----
From: h_e_z_i@yahoo.com [mailto:h_e_z_i@yahoo.com]
Sent: 04 July 2005 18:56
To: pen-test@securityfocus.com
Subject: redirecting a remote printer output into an attacker's printer

Hello!

As part of a black box pen-test which i'll try to conduct in the company I
work with, I would like to attempt a redirection or sniffing a printer's
output.

My thoughts regarding the subject were to try and see if i'm able to arp
spoof the printer and it's default gateway, and then to sniff the traffic.
As a result of this, I wonderd if there is any free software which I could
use to redirect the sniffed data into an other printer.

Any help will be appreciated.
Thanks,
Nadav

• Next message: Christoph Puppe: "Re: Providers blocking portscans - bad news for pentest?"
• Previous message: RCS: "Re: Providers blocking portscans - bad news for pentest?"
• Maybe in reply to: h_e_z_i@yahoo.com: "redirecting a remote printer output into an attacker's printer"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:54:31 EDT