| VID |
29119 |
| Severity |
40 |
| Port |
80, ... |
| Protocol |
TCP |
| Class |
Printer |
| Detailed Description |
The Xerox Document Centre device, according to its version number, has multiple vulnerabilities. Xerox Document Centre is a color printer used for copying, printing, scans, email, fax, and Internet fax. Multiple versions of Xerox Document Centre are vulnerable to multiple vulnerabilities, caused by an unspecified reason, which can be exploited by a remote attacker to cause a denial of service, gain unauthorized access to the device, conduct cross-site scripting attacks, or bypass authentication.
* Note: This check solely relied on the model number and software version number of the remote Xerox Document Centre device extracted from its embedded Web server to assess this vulnerability, so this might be a false positive.
* References:
http://www.office.xerox.com/perl-bin/product.pl?product=DC426ST
http://secunia.com/advisories/16467
* Platforms Affected:
Multiple versions of Xerox Document Centre |
| Recommendation |
Apply the P24 and P25 patches, as listed in the following Xerox security bulletins:
http://www.xerox.com/downloads/usa/en/c/cert_XRX05_008.pdf
http://www.xerox.com/downloads/usa/en/c/cert_XRX05_009.pdf |
| Related URL |
CVE-2005-2645,CVE-2005-2645,CVE-2005-2647 (CVE) |
| Related URL |
14586 (SecurityFocus) |
| Related URL |
21891 (ISS) |
|
