CVE-2008-0303 Information

Description

The FTP print feature in multiple Canon printers including imageRUNNER and imagePRESS allow remote attackers to use the server as an inadvertent proxy via a modified PORT command aka FTP bounce.

Reference

http://itso.iu.edu/20080229_Canon_MFD_FTP_bounce_attack http://jvn.jp/en/jp/JVN10056705/index.html http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-000013.html http://securitytracker.com/id?1019528 http://www.kb.cert.org/vuls/id/568073 http://www.securityfocus.com/bid/28042 http://www.usa.canon.com/html/security/pdf/CVA-001.pdf