- Cross-site printing
-
Cross-site printing or XSP is a variation of cross-site scripting (XSS) to allow attackers to spam intranet printers.
Network printers in a LAN often listen on TCP port 9100 to get a print job in RAW or PostScript format. The security around this is usually minimal. If you are in the same LAN as the printer, you can send anything to that port. With a crafted website, an attacker can send commands via the user's browser to the network printer. For example, an attacker could print a PostScript document or ASCII art with advertisements.
External links
Categories:- Computer security
- Web security exploits
- Internet stubs
Wikimedia Foundation. 2010.