Skip to content
Branch: master
Find file History
Latest commit bbcd581 May 3, 2019
Permalink
Type Name Latest commit message Commit time
..
Failed to load latest commit information.
pics update pics May 3, 2019
README.md update Timeline May 3, 2019

README.md

CVE-2019-6452

Timeline

  • January 15, 2019 reported to Kyocera
  • January 15, 2019 replied solution
  • January 16, 2019 CVE assigned

Affected Products

  • Kyocera Command Center RX TASKalfa4501i
  • Kyocera Command Center RX TASKalfa5052ci

Technical Details

those printers allow remote attackers to abuse the Test button in the machine address book to obtain a cleartext FTP or SMB password.

change host address to your rouge server and hit the test button

you should received cleartext by now, in this case the client use blank password

Discoverer

You can’t perform that action at this time.