WebClientPrint Processor 2.0.15.109 TLS Validation

Posted by deepcore on August 24, 2017 – 4:45 am

RedTeam Pentesting discovered that WebClientPrint Processor (WCPP) does not validate TLS certificates when initiating HTTPS connections. Thus, a man-in-the-middle attacker may intercept and/or modify HTTPS traffic in transit. This may result in a disclosure of sensitive information and the integrity of printed documents cannot be guaranteed. Version 2.0.15.109 is affected.

This post is under “exploit” and has no respond so far.
If you enjoy this article, make sure you subscribe to my RSS Feed.

Post a reply

You must be logged in to post a comment.

« WebClientPrint Processor 2.0.15.109 Updates Remote Code Execution WebClientPrint Processor 2.0.15.190 Print Jobs Remote Code Execution »

:: Deepquest ::

This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

WebClientPrint Processor 2.0.15.109 TLS Validation

Post a reply

Tabs Switcher

Categories

Archives

Meta

BLOGROLL