threatpost
Researchers have released technical details on a high-severity privilege-escalation flaw in HP printer drivers (also used by Samsung and Xerox), which impacts hundreds of millions of Windows machines.
If exploited, cyberattackers could bypass security products; install programs; view, change, encrypt or delete data; or create new accounts with more extensive user rights.
The bug (CVE-2021-3438) has lurked in systems for 16 years, researchers at SentinelOne said, but was only uncovered this year. It carries an 8.8 out of 10 rating on the CVSS scale, making it high-severity. More
I’ve had nothing but problems with HP printers.
It’s a feature, not a bug.
Shit canned my HP and bought a Canon……
HP’S corporate motto is “Embrace The Suck!”
@Dave Huff:
Ditto. Good decision.
The only other brand I’ve had that was virtually trouble-free was Epson, but it’s been a few years since I’ve dealt with one: it was an MX-80 dot matrix. (-:
The problem is not with HP.
Read it again.
I’ve spent years downloading porn and damn if I am going to let anyone hack in and take it!! Scary world we live in.. thanks for the warning
Linux to the rescue!
Linux has been very good to me.
BUY an INK TANK printer and tell HP to shove those $$$$$ ink cartridges right up Carly Fiorina’s RHINO ASS.
Has a face like a Fucking Tennis Racquet.
I bought one for my daughter, filled it once, and it still has ink 2 years latter. MUCH CHEAPER.
I wish I was smart enough to bash my HP with a hammer but grew up in a time where you do not throw things out until they are no longer working.
Uncle Al,
Got one of those also….
^^^^ THIS!!!! ^^^^
the ‘money’ quote from the article: “Whether you are configuring the printer to work wirelessly or via a USB cable, this driver gets loaded. In addition, it will be loaded by Windows on every boot. This makes the driver a perfect candidate to target since it will always be loaded on the machine even if there is no printer connected.”
@Kcir
“Has a face like a Fucking Tennis Racquet.”
Now and then, i come across a phrase I’ve never heard before, but I understand instantly because it so thoroughly and accurately sums up a condition, that I just latch onto it. Keeping this one.
Hey! how did the Geeks comment get deleted?
He was a spammer. Amazing what an IP tells you, isn’t it.
H-P’s are the second-WORST printers on the planet, and I’ve hated every one I’ve ever owned. 😡
Sadly, they rank just ahead, of all OTHERS. 😳
Nothing beats my Brother All-In-One.
But I do love my HP laptop, and I just added an HP x360 that I will take over any iPad or other pad.
There are probably gaping security holes in every single device I own.
What is this ‘printer’ thing you speak of?
Being a rural American, I’ve never heard of such a thing.