Full Disclosure: Vulnerability discloses PIN used in Microsoft Excel secure printing

Vulnerability discloses PIN used in Microsoft Excel secure printing

From: Ed Murphy <ed.b.murphy () gmail com>
Date: Mon, 31 Jan 2011 19:01:59 +1100

Hello list,

Stumbled across this today.  It appears Excel spreadsheets store
printer information including the PIN you might use when trying to do
a "secure" print.

http://insecureprinting.com/Microsoft_Excel_Spreadsheets_Expose_User_PIN_Used_for_Confidential_Secure_Printing.pdf

The paper is quite thorough and shows that in most cases the PIN is
stored in clear text in the spreadsheet, though some printer vendors
try to obfuscate the PIN (though not very successfully).

Thanks,
Ed

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

By Date By Thread

Current thread:

Vulnerability discloses PIN used in Microsoft Excel secure printing Ed Murphy (Jan 31)
- Re: Vulnerability discloses PIN used in Microsoft Excel secure printing Cal Leeming [Simplicity Media Ltd] (Jan 31)
  - Re: Vulnerability discloses PIN used in Microsoft Excel secure printing Thor (Hammer of God) (Jan 31)
    - Re: Vulnerability discloses PIN used in Microsoft Excel secure printing Christian Sciberras (Jan 31)
    - Re: Vulnerability discloses PIN used in Microsoft Excel secure printing Michael Holstein (Jan 31)
    - Re: Vulnerability discloses PIN used in Microsoft Excel secure printing Thor (Hammer of God) (Jan 31)
    - Re: Vulnerability discloses PIN used in Microsoft Excel secure printing Michael Holstein (Jan 31)