1. Kundendienst
  2. Drucker
  3. Lexmark C748
  4. Interaktives Benutzerhandbuch
  5. Padding Oracle on Downloaded Legacy Encryption 'POODLE' Vulnerability
Lexmark C748

Lexmark C748

Druckerfunktionen: Laser, nur Druck, Farbe

Lexmark C748 Kundendienst

Setup, installation, and configuration issues
How to set up OAuth 2.0
additional-faqs-for-universal-print-driver-version
Error when Using Copy Printer Settings Feature on Embedded Web Server
List of Printers that Support Link Layer Topology Discovery
snmpv3-password-field-displays-blank-after-submitt
Configuration of the MarkNet N8050 Internal Wireless Adapter
Printing the Menu Settings Page on most touchscreen printers and MFPs
How to Locate the Serial Number, Machine Type, and Configuration ID on a Lexmark C746, C748 or X746, X748 Printer/MFP
how-to-retract-the-autocomp-paper-pick-unit-in-the
Enabling and disabling automatic tray linking
how-to-create-a-device-quotas-fac-configuration-fi
how-to-determine-hard-disk-status-and-remotely-act
Configuring Google Cloud Print Version 1.6.6
How to rebuild the terminal in pharos blueprint
How to reinstall Pharos Blueprint Apps
How to Configure Lexmark Print Management Full Data Export for MSSQL Database
How to Set Retention Time for Released Jobs via LPM Print Release
How to Set LDD to discover IP addresses Ending in .0 and .255
how-to-set-up-color-print-permission-in-mve-24x-ho
How to Print a Booklet Using the PostScript Driver on a Laser Printer
Creating a peer to peer network connection with standard Ethernet cable
How to configure Lexmark devices for Common Access Card when using PIV certificate
device-is-no-longer-discoverable-by-ldd-server-so7
Printer Driver Configuration Unchecked when Computer Hibernates or Sleeps
MVE Errors when Adding a Database from Lower to Newer Versions
Secure Held Print Jobs Icon Does Not Display on the Control Panel After Installation
t9760-service-network-software-errors-so7748
Testing Printer to Server Communication with the Use of Telnet on Certain Product Generations
Scan to Network: Browsing Folders from the Printer Display Is Slow
lexmark-support-for-microsoft-ldap-channel-binding
Padding Oracle on Downloaded Legacy Encryption 'POODLE' Vulnerability
Obtaining the Menu Settings page (MSP)
How to enable postscript print error information
Enabling the generate postscript in driver or disabling the postscript passthrough
Installing Lexmark print drivers in macOS
how-to-verify-lft-product-activation-ho3880
How to enable debug logging for Print Release
Capturing a spool or job file in Linux
Capturing a spool or job file in Macintosh OS
Downloading and installing the print driver
E-mail and FTP settings configuration topics as seen via the Embedded Web Server
General Settings for the Embedded Web Server
Identifying if the computer is running Windows or macOS
Slow Driver Responsiveness when Opening Printing Preferences or Print Dialog
Installing the MarkNet N8150, N8250, or N8350 a/b/g/n wireless print server
Downloading fonts from a PCL 5 or PCL XL driver
Exporting and importing user-defined configuration settings
Capturing the Device Description (DEVD) and Output Queue (OUTQ) settings in AS/400
capturing-the-lpma-printer-discovery-tool-logs-ho4
The Difference Between Power Saver (Sleep) Versus Hibernation on a Lexmark Printer/MFP
How to enable Scan to FTP
Maximum number of shortcuts that can be used on Lexmark multifunction printers
Setting up an e-mail server for scanning to e-mail
How to set the email size limit
How to use the Service Restore Tool to retrieve previously deployed licenses
Serial Number, Machine Type, and Configuration ID Location for the Lexmark MS, MX, XM, CS, CX, XC, 91X - 92x Series Printers and MFPs
How to Determine the Version of Your Installed Printer Driver
How to Copy/Upgrade the Printer Base Code via USB Cable
How to Copy/Upgrade the Printer Base Code via Parallel Cable
Audio feedback still audible when 'Button Feedback' setting is turned off
changing-the-geographic-region-setting-ho2599
How to change Date and Time & NTP server
Knowledge base
Setup, installation, and configuration issues

Padding Oracle on Downloaded Legacy Encryption 'POODLE' Vulnerability

Lexmark Security Advisory:
Revision:
1.2
Last update:
25 November 2014
Public Release Date:
4 November 2014
Summary
POODLE
 (Padding Oracle On Downgraded Legacy Encryption) vulnerability
A vulnerability was disclosed in the SSLv3 protocol which allows an attacker with the ability to intercept and insert traffic (Man-In-The-Middle) to decrypt a portion of the encrypted communication.
References
CVE: CVE-2014-3566
Details
On October 14, 2014, a vulnerability was announced by Google researchers in the way the Secure Sockets Layer version 3 (SSLv3) protocol handles block ciphers in Cipher Block Chaining (CBC) mode. This vulnerability can be exploited by an attacker to decrypt a portion of the encrypted communication, most notably session cookies.
SSLv3 is an old protocol which contains a considerable number of known vulnerabilities. With the addition of this vulnerability use of SSLv3 is now considered insecure; the more modern Transport Layer Security (TLS) protocol should be used in place of SSL.
Vulnerability Scoring Details
CVSS Base Score:
4.3 (AV:N/AC:M/AU:N/C:P/I:N/A:N)
Impact Subscore:
2.9
Exploitability Subscore:
8.6
CVSS scores are calculated in accordance with CVSS version 2.0 (http://www.first.org/cvss/cvss-guide.html)
Impact
This vulnerability can be used to expose a portion of SSLv3 protected communications. This information can include session cookies which can then be leveraged to obtain unauthorized access.
Affected Products
The following products are known to be affected; for specific details see “Product Specific Information” below. Lexmark is assessing each product and will update this advisory as more information becomes available.
  • Lexmark printer products
Additional products may be affected, investigations are ongoing.
Product Specific Information
Lexmark is individually assessing each product and will update this advisory as more information becomes available.
Laser printer products
The following printers and MFPs are affected:
To determine what level of firmware a device is running, select the "
Reports
" > "
Menu Setting Page
" menu item from the operator panel. If the firmware level listed under Device Information matches any level under “
Affected Releases
”, then upgrade to a “
Fixed Release
”. Additional products may be affected, investigations are ongoing.
Lexmark Models
Affected Releases
Fixed Releases
CS31x
LW41.VYL.P468 and previous
LW41.VYL.P469 and later
CS41x
LW41.VY2.P468 and previous
LW41.VY2.P469 and later
CS51x
LW41.VY4.P468 and previous
LW41.VY4.P469 and later
CX310
LW41.GM2.P468 and previous
LW41.GM2.P469 and later
CX410
LW41.GM4.P468 and previous
LW41.GM4.P469 and later
CX510
LW41.GM7.P468 and previous
LW41.GM7.P469 and later
XC2132
LW41.GM7.P468 and previous
LW41.GM7.P469 and later
MS310
LW41.PRL.P468 and previous
LW41.PRL.P469 and later
MS312
LW41.PRL.P468 and previous
LW41.PRL.P469 and later
MS315
LW41.TL.P468 and previous
LW41.TL.P469 and later
MS410
LW41.PRL.P468 and previous
LW41.PRL.P469 and later
MS415
LW41.TL.P468 and previous
LW41.TL.P469 and later
MS51x
LW41.PR2.P468 and previous
LW41.PR2.P469 and later
MS610dn & MS610dtn
LW41.PR2.P468 and previous
LW41.PR2.P469 and later
M1145 & M3150dn
LW41.PR2.P468 and previous
LW41.PR2.P469 and later
MS610de & MS610dte
LW41.PR4.P468 and previous
LW41.PR4.P469 and later
M3150
LW41.PR4.P468 and previous
LW41.PR4.P469 and later
MS71x
LW41.DN2.P468 and previous
LW41.DN2.P469 and later
MS810n, MS810dn & MS810dtn
LW41.DN2.P468 and previous
LW41.DN2.P469 and later
MS811
LW41.DN2.P468 and previous
LW41.DN2.P469 and later
MS812dn, MS812dtn
LW41.DN2.P468 and previous
LW41.DN2.P469 and later
M5163dn
LW41.DN2.P468 and previous
LW41.DN2.P469 and later
MS810de
LW41.DN4.P468 and previous
LW41.DN4.P469 and later
M5155 & M5163
LW41.DN4.P468 and previous
LW41.DN4.P469 and later
MS812de
LW41.DN7.P468 and previous
LW41.DN7.P469 and later
M5170
LW41.DN7.P468 and previous
LW41.DN7.P469 and later
MS91x
LW41.SA.P468 and previous
LW41.SA.P469 and later
MX310
LW41.SB2.P468 and previous
LW41.SB2.P469 and later
MX410, MX510 & MX511
LW41.SB4.P468 and previous
LW41.SB4.P469 and later
XM1145
LW41.SB4.P468 and previous
LW41.SB4.P469 and later
MX610 & MX611
LW41.SB7.P468 and previous
LW41.SB7.P469 and later
XM3150
LW41.SB7.P468 and previous
LW41.SB7.P469 and later
MX71x
LW41.TU.P468 and previous
LW41.TU.P469 and later
MX81x
LW41.TU.P468 and previous
LW41.TU.P469 and later
XM51xx & XM71xx
LW41.TU.P468 and previous
LW41.TU.P469 and later
MX91x
LW41.MG.P468 and previous
LW41.MG.469 and later
MX6500e
LW41.JD.P468 and previous
LW41.JD.P469 and later
C746
LHS41.CM2.P458 and previous
LHS41.CM2.P459 and later
C748 & CS748
LHS41.CM4.P458 and previous
LHS41.CM4.P459 and later
C79x & CS796
LHS41.HC.P458 and previous
LHS41.HC.P459 and later
C925
LHS41.HV.P458 and previous
LHS41.HV.P459 and later
C95x
LHS41.TP.P458 and previous
LHS41.TP.P459 and later
X548 & XS548
LHS41.VK.P458 and previous
LHS41.VK.P459 and later
X74x & XS748
LHS41.NY.P458 and previous
LHS41.NY.P459 and later
X792 & XS79x
LHS41.MR.P458 and previous
LHS41.MR.P459 and later
X925 & XS925
LHS41.HK.P458 and previous
LHS41.HK.P459 and later
X95x & XS95x
LHS41.TQ.P458 and previous
LHS41.TQ.P459 and later
6500e
LHS41.JR.P458 and previous
LHS41.JR.P459 and later
C734
LR.SK.P693 and previous
LR.SK.P694 and later
E46x
LR.LBH.P673 and previous
LR.LBH.P674 and later
T650 & T652
LR.JP.P680 and previous
LR.JP.P681 and later
T654
LR.JP.P680 and previous
LR.JP.P681 and later
T656
LSJ.SJ.P041 and previous
LSJ.SJ.P042 and later
W85x
LR.JB.P645 and previous
LR.JB.P646 and later
X46x
LR.BS.P695 and previous
LR.BS.P696 and later
X65x
LR.MN.P694 and previous
LR.MN.P695 and later
X73x
LR.FL.P694 and previous
LR.FL.P695 and later
X86x
LP.SP.P694 and previous
LP.SP.P695 and later
Obtaining Updated Software
To obtain firmware that resolves this issue or if you have special code, please contact Lexmark’s Technical Support Center at http://support.lexmark.com to find your local support center.
Markvision Enterprise
Workarounds
The vulnerability only exists when SSLv3 is in use. Therefore Lexmark recommends that you disable SSLv3 support in your browser and other applications. Contact your application provider for information on how to accomplish this.
Exploitation and Public Announcements
Lexmark is not aware of any malicious use of the vulnerability described in this advisory.
Status of this Notice:
This document is provided on an "as is" basis and is provided without any express or implied guarantee or warranty whatsoever, including but not limited to the warranties of merchantability and fitness for a particular use or purpose. Lexmark reserves the right to change or update this document at any time.
Distribution
This advisory is posted on Lexmark’s web site at http://support.lexmark.com/alerts.
Future updates to this document will be posted on Lexmark’s web site at the same location.
Revision History
Revision
Date
Reason
1.0
3 - November - 2014
Initial Public Release
1.1
12 - November - 2014
Updated to identify affected products
1.2
25-November-2014
Updated to identify additional affected products
LEGACY ID:
TE656

Auf dieser Website werden Cookies für verschiedene Zwecke verwendet, z. B. zur Verbesserung Ihrer Benutzererfahrung, für Analysen und für Werbung. Wenn Sie auf dieser Seite weitersurfen oder auf "Akzeptieren und schließen" klicken, stimmen Sie unserer Verwendung von Cookies zu. Weitere Informationen finden Sie auf unserer Seite Cookies.