Home page logo

pen-test logo Penetration Testing mailing list archives

Using a Stand-Alone Network Printer as a network attack entry point?
From: "Nick Jacobsen" <nick () ethicsdesign com>
Date: Thu, 15 Aug 2002 21:20:03 -0700

Hi all...
    I came up with an idea, one that I've never heard discussed, of possibly
modifying a stand-alone network printer (like most of the high-end office
printers, hereafter referred to as a "SNP") to act as a full point to point
proxy, or at least a simple pass through to the port and IP you specify in
some sort of configuration.  The idea here would be to take a SNP and modify
a ROM image for the specific printer to include the proxy functionality. I
realize this could turn out to be quite difficult, but at the same time, it
would provide a way into the internal network when no others are available.
Any comments are most DEFINITELY welcome, flames less so, but if it's a
stupid idea, let me know...

Nick Jacobsen
nick () ethicsdesign com
ethics () netzero net

This list is provided by the SecurityFocus Security Intelligence Alert (SIA)
Service. For more information on SecurityFocus' SIA service which
automatically alerts you to the latest security vulnerabilities please see:

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]