A security vulnerability involving some HP printer models makes users open to hacking attack.

The bug in the Toolbox software installed with HP's Color LaserJet 2500 and 4600 printers creates a means for attackers to pinch valuable information. When the Toolbox is left in a default configuration hackers might be able to steal files from a Windows PC connected to these printers. HP advises users to upgrade their Toolbox software to version 3.1 to guard against possible attacks.

More details can be found in HP's advisory here (http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00634759&printver=true). ®

Related stories

EU security agency warns over insecure printing (4 June 2008)
http://www.theregister.co.uk/2008/06/04/printing_security_risks/
Spam spewing printer attack pulps security (14 January 2008)
http://www.theregister.co.uk/2008/01/14/spam_print_menace/
HP claims latest printer a record-breaker (12 April 2007)
http://www.theregister.co.uk/2007/04/12/hp_plans_recordbreaking_inkjet/
HP hunts for printer consultants (4 October 2006)
http://www.channelregister.co.uk/2006/10/04/hp_hiring_consultants/
Fidelity lost HP's employee data to impress HP (24 March 2006)
http://www.theregister.co.uk/2006/03/24/hp_fidelity_laptop/
200,000 HP staff exposed as laptop loss party continues (22 March 2006)
http://www.theregister.co.uk/2006/03/22/fidelity_laptop_hp/
Lexmark denies spyware allegations (15 November 2004)
http://www.theregister.co.uk/2004/11/15/lexmark_spyware/
SNMP exploit causes printers to jam (21 February 2002)
http://www.theregister.co.uk/2002/02/21/snmp_exploit_causes_printers/
Mystery of crashing HP printers solved? (14 August 2001)
http://www.theregister.co.uk/2001/08/14/mystery_of_crashing_hp_printers/