Technology content trusted in North America and globally since 1999
8,561 Reviews & Articles | 66,614 News Posts

Samsung leaves admin backdoor hardcoded into firmware, also affects some Dell printers

Oops: Samsung hardcodes an admin backdoor into its printers, requires no authentication

By: Trace Hagan from Nov 28, 2012 @ 17:28 CST

Samsung has broken rule number 1 of computer security by leaving an admin backdoor hard coded into the firmware of its printers. More importantly, the backdoor is left open even when the protocol it runs on is disabled. Even worse is the fact Samsung has left it wide open and it requires zero authentication.


The admin backdoor could allow anyone who knows about it access to data on the printer, which means that those sensitive business documents could easily be obtained by nefarious people. It's also thought that the printer could be used for further attacks on an otherwise secure corporate network. Oops.

The backdoor was discovered by the U.S. Computer Emergency Readiness Team (US-CERT). The backdoor is also present in some Dell printers, the ones that happen to be manufactured by Samsung. Printers released after October 31, 2012 do not have the backdoor present and a patch will be released "shortly" for the affected models.


Related Tags