CVE-2004-1856 | HackTesting

devices_update_printer_fw_upload.hts in HP Web JetAdmin 7.5.2546, when no password is set, allows remote attackers to upload arbitrary files to the printer directory.

References

http://www.securityfocus.com/advisories/6492

http://sh0dan.org/files/hpjadmadv.txt

http://marc.info/?l=bugtraq&m=108016019623003&w=2

http://www.securityfocus.com/bid/9971

https://exchange.xforce.ibmcloud.com/vulnerabilities/15605