Root Cause Analysis of a Printerβs Drivers Vulnerability CVE-2021-3438
Last week SentinelOne disclosed a βhigh severityβ flaw in HP, Samsung, and Xerox printerβs drivers (CVE-2021-3438); the blog post highlighted a vulnerable strncpy operation with a user-controllable size parameter but it did not explain the reverse engineering nor the exploitation phase of the issue. With this blog post, I would like to analyse the vulnerability [β¦]
The post Root Cause Analysis of a Printerβs Drivers Vulnerability CVE-2021-3438 appeared first on VoidSec.