| VID |
29114 |
| Severity |
20 |
| Port |
80, ... |
| Protocol |
TCP |
| Class |
Printer |
| Detailed Description |
The Xerox WorkCentre device, according to its version number, has a Fax Information Disclosure vulnerability. Xerox Document Centre and WorkCentre are a color printer used for copying, printing, scans, email, fax, and Internet fax. Xerox WorkCentre M24 versions 1.01 and 1.0 are vulnerable to an information disclosure vulnerability, caused due to a design error. This may facilitate information disclosure under certain extreme conditions when an unsuspecting user sends a multi-page fax.
* Note: This check solely relied on the model number and software version number of the remote Xerox WorkCentre device extracted from its embedded Web server to assess this vulnerability, so this might be a false positive.
* Platforms Affected:
Xerox WorkCentre M24 versions 1.01 and 1.0 |
| Recommendation |
Apply the appropriate patches, as listed in the following Xerox security bulletin:
http://www.xerox.com/downloads/usa/en/c/CERT_Xerox_Security_XRX05_002.pdf |
| Related URL |
(CVE) |
| Related URL |
12787 (SecurityFocus) |
| Related URL |
(ISS) |
|
