Open andresavic opened 1 year ago
I guess my interpretation of this issue is: "Document vulnerable versions". It doesn't seem like the author has expressed any interest in being a one-stop-shop for exploiting this printer. Further documentation of the author's existing work seems reasonable though.
A few questions:
I'm on an older version and updating doesn't seem to work. I assume the printer is upset because I have no toner in the machine. My thinking is that if there are any "errors", the printer won't perform a firmware update. The web interface acts like it's loading forever when I try to upgrade the firmware. There are no errors.
Congratulation on finding the vulnerability. Tested on my printer out of curiosity. I have an older firmware installed. (CXLBL.061.039) and the exploit seems not to work out of the box. The connection times out.