What is the severity of CVE-2004-2439?

The severity of CVE-2004-2439 is rated as high due to the potential for unauthorized firmware upgrades.

How do I fix CVE-2004-2439?

To fix CVE-2004-2439, ensure that the remote upgrade capability is disabled on the affected HP LaserJet printers.

Which HP printers are affected by CVE-2004-2439?

CVE-2004-2439 affects several models including HP LaserJet 4200, 4300, and others in the LaserJet series.

What are the risks associated with CVE-2004-2439?

The risks associated with CVE-2004-2439 include the potential for attackers to remotely upgrade printer firmware, leading to possible malicious exploits.

What actions should I take if I am using vulnerable models of HP printers listed in CVE-2004-2439?

If using vulnerable models, you should promptly disable remote firmware upgrades and monitor for any unauthorized changes.

Vulnerability/
CVE-2004-2439

medium

CWE

NVD-CWE-Other

31/12/2004

20/8/2005

8/8/2024

CVE-2004-2439

First published: Fri Dec 31 2004(Updated: )

The remote upgrade capability in HP LaserJet 4200 and 4300 printers does not require a password, which allows remote attackers to upgrade firmware.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
HP LaserJet 4200dtn
HP LaserJet 4100 MFP
HP 9000
HP LaserJet 9040n
HP LaserJet 3000
HP LaserJet 9500 MFP
HP LaserJet M9050 Multifunction Printer
HP LaserJet 9050 MFP
HP Color LaserJet	=5550
HP LaserJet 3700
HP LaserJet 9065
HP LaserJet 9000mfp
HP LaserJet 9055
HP LaserJet 2500
HP Color LaserJet	=4650
HP Color LaserJet	=5500
HP LaserJet 9500
HP Color LaserJet 4600dtn
HP LaserJet 4300

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2004-2439?
The severity of CVE-2004-2439 is rated as high due to the potential for unauthorized firmware upgrades.
How do I fix CVE-2004-2439?
To fix CVE-2004-2439, ensure that the remote upgrade capability is disabled on the affected HP LaserJet printers.
Which HP printers are affected by CVE-2004-2439?
CVE-2004-2439 affects several models including HP LaserJet 4200, 4300, and others in the LaserJet series.
What are the risks associated with CVE-2004-2439?
The risks associated with CVE-2004-2439 include the potential for attackers to remotely upgrade printer firmware, leading to possible malicious exploits.
What actions should I take if I am using vulnerable models of HP printers listed in CVE-2004-2439?
If using vulnerable models, you should promptly disable remote firmware upgrades and monitor for any unauthorized changes.

agent/references
agent/type
agent/first-publish-date
collector/mitre-cve
source/MITRE
agent/weakness
agent/author
agent/last-modified-date
agent/severity
agent/description
agent/event
agent/source
agent/tags
agent/softwarecombine
collector/nvd-historical
agent/software-canonical-lookup-request
collector/nvd-index
vendor/hp
canonical/hp laserjet 4200dtn
canonical/hp laserjet 4100 mfp
canonical/hp 9000
canonical/hp laserjet 9040n
canonical/hp laserjet 3000
canonical/hp laserjet 9500 mfp
canonical/hp laserjet m9050 multifunction printer
canonical/hp laserjet 9050 mfp
canonical/hp color laserjet
version/hp color laserjet/5550
canonical/hp laserjet 3700
canonical/hp laserjet 9065
canonical/hp laserjet 9000mfp
canonical/hp laserjet 9055
canonical/hp laserjet 2500
version/hp color laserjet/4650
version/hp color laserjet/5500
canonical/hp laserjet 9500
canonical/hp color laserjet 4600dtn
canonical/hp laserjet 4300

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.