UV#281284 - Samsung Printer SNMP Backdoor

I don’t have time to write up a full post on this like I wanted to. Here’s the details you wanted anyways:I like the sneaky CUSTOM_TRAPPORT . And that password looks to be way to complex for it to be left in ‘by accident’. I doubt ‘mistakes’ are named ‘SECRET_PUBLIC’… Also, that community string has been found in firmware dating back to 2004.public class SamsungMIB{  public static final OID org = new OID(1, 3);  public static final OID dod = org.index(6);  public static final OID internet = dod.index(1);  public static final OID directory = internet.index(1);  public static final OID mgmt = internet.index(2);  public static final OID experimental

Who influenced this selection?What is this?

What the influencers are saying

  1. Chris Wysopal

    171.0 days ago

    RT @neilwillgettoit: samsung printer backdoor deets http://t.co/XR1fKrez

  2. HD Moore

    171.0 days ago

    RT @neilwillgettoit: UV#281284 - Samsung Printer SNMP Backdoor: http://t.co/45FuiVpk < "s!a@m#n$p%c"



, join the conversation

Related Reading

News

Most Popular

Commentary

On the Web

More On the Web»

Video

Slideshow



InformationWeek encourages readers to engage in spirited, healthy debate, including taking us to task. However, InformationWeek moderates all comments posted to our site, and reserves the right to modify or remove any content that it determines to be derogatory, offensive, inflammatory, vulgar, irrelevant/off-topic, racist or obvious marketing/SPAM. InformationWeek further reserves the right to disable the profile of any commenter participating in said activities.

Disqus Tips To upload an avatar photo, first complete your Disqus profile. | View the list of supported HTML tags you can use to style comments. | Please read our commenting policy.