Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-2113

Overview

Vulnerability Score 6.4 6.4
CVE Id CVE-2006-2113
Last Modified 11 Jul 2011 12:00:00
Published 24 Aug 2006 09:04:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-2113

Summary

The embedded HTTP server in Fuji Xerox Printing Systems (FXPS) print engine, as used in products including (1) Dell 3000cn through 5110cn and (2) Fuji Xerox DocuPrint firmware before 20060628 and Network Option Card firmware before 5.13, does not properly perform authentication for HTTP requests, which allows remote attackers to modify system configuration via crafted requests, including changing the administrator password or causing a denial of service to the print server.

Vulnerable Systems


References

MISC - http://itso.iu.edu/20060824_FXPS_Print_Engine_Vulnerabilities

VUPEN - ADV-2006-3401

BID - 19716

BUGTRAQ - 20060825 Indiana University Security Advisory: Fuji Xerox Printing Systems (FXPS) print engine vulnerabilities

OSVDB - 28250

SECUNIA - 22463

SECUNIA - 21630

BUGTRAQ - 20060825 Indiana University Security Advisory: Fuji Xerox Printing Systems (FXPS) print engine vulnerabilitie


Last Updated: 27 May 2016 10:42:20