Summaryinfo

A vulnerability categorized as critical has been discovered in Brother Printer HL5370. Impacted is an unknown function. Such manipulation of the argument PJL JOB leads to improper authentication. Furthermore, there is an exploit available.

Detailsinfo

A vulnerability was found in Brother Printer HL5370 (Printing Software) (affected version unknown). It has been rated as critical. Affected by this issue is an unknown functionality. The manipulation of the argument PJL JOB with an unknown input leads to a improper authentication vulnerability. Using CWE to declare the problem leads to CWE-287. When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct. Impacted is confidentiality, and integrity.

The weakness was shared 02/10/2013 as File 120215/Bro as confirmed exploit (Packetstorm). The advisory is available at packetstormsecurity.com. The vendor was not involved in the coordination of the public release. The attack may be launched remotely. No form of authentication is required for exploitation. Technical details as well as a public exploit are known.

After immediately, there has been an exploit disclosed. The exploit is available at packetstormsecurity.com. It is declared as proof-of-concept.

There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.

The vulnerability is also documented in the vulnerability database at OSVDB (90085†). If you want to get best quality of vulnerability data, you may have to visit VulDB.

Productinfo

Type

• Printing Software

Vendor

• Brother

Name

• Printer HL5370

CPE 2.3info

• 🔍

CPE 2.2info

• 🔍

CVSSv4info

CVSSv3info

CVSSv2info

Exploitinginfo

Threat Intelligenceinfo

Countermeasuresinfo

Timelineinfo

Sourcesinfo

Entryinfo

Discussion