Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

bugtraq logo Bugtraq mailing list archives

RE: Promiscuous email printing in Canon imageRunner
From: "Jeff Bates" <JJB () crouse org>
Date: Thu, 30 Sep 2004 16:30:09 -0400
 
Try scanning the Ip address with nmap -A 10.0.0.1

My IR2200 didn't have port 25 open, but it still printed 15-20 sheets of
paper.

- J 


-----Original Message-----
From: Matthew E. Lauterbach [mailto:mlauterbach () mail wtamu edu] 
Sent: Monday, September 27, 2004 5:02 AM
To: bugtraq () securityfocus com
Subject: RE: Promiscuous email printing in Canon imageRunner

On Thursday, September 23, 2004 5:44 PM Andrew Daviel wrote:

The Canon iR5000i digital printer (and probably other imageRunner 
models) has a somewhat undocumented print-from-email feature.

Any text/plain email sent to port 25 on the device will be printed.
The MAIL FROM and RCPT TO values are not authenticated or even checked



for syntax.

 
The Canon iR85 does not seem to have this "feature".  Doing "telnet
10.0.0.1 25" to either of my iR85 printers returns "Could not open
connection to the host, on port 25: Connect failed".

Matt Lauterbach

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]