Home page logo
/

fulldisclosure logo Full Disclosure mailing list archives

Re: Vulnerability discloses PIN used in Microsoft Excel secure printing
From: "Cal Leeming [Simplicity Media Ltd]" <cal.leeming () simplicitymedialtd co uk>
Date: Mon, 31 Jan 2011 14:19:21 +0000

Wtf, I've never heard heard of a 'secure' print :S

On Mon, Jan 31, 2011 at 8:01 AM, Ed Murphy <ed.b.murphy () gmail com> wrote:

Hello list,

Stumbled across this today.  It appears Excel spreadsheets store
printer information including the PIN you might use when trying to do
a "secure" print.


http://insecureprinting.com/Microsoft_Excel_Spreadsheets_Expose_User_PIN_Used_for_Confidential_Secure_Printing.pdf

The paper is quite thorough and shows that in most cases the PIN is
stored in clear text in the spreadsheet, though some printer vendors
try to obfuscate the PIN (though not very successfully).

Thanks,
Ed

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]