VID |
29132 |
Severity |
30 |
Port |
80, ... |
Protocol |
TCP |
Class |
Printer |
Detailed Description |
The Xerox WorkCentre device, according to its version number, has multiple vulnerabilities (XRX06-001). Xerox WorkCentre is a color printer used for copying, printing, scans, email, fax, and Internet fax. Multiple versions of Xerox WorkCentre are vulnerable to multiple vulnerabilities, which can be exploited by a remote attacker to bypass certain security restrictions, conduct cross-site scripting attacks, or cause a Denial of Service (DoS).
* Note: This check solely relied on the model number and software version number of the remote Xerox WorkCentre device extracted from its embedded Web server to assess this vulnerability, so this might be a false positive.
* References: http://www.xerox.com/downloads/usa/en/c/cert_XRX06_001.pdf http://secunia.com/advisories/18952/
* Platforms Affected: Xerox WorkCentre 232/238/245/255/265/275 Xerox WorkCentre Pro 232/238/245/255/265/275 Software versions prior to 14.027.24.015 |
Recommendation |
Install System Software Version 14.027.24.015 or 13.027.24.015, as listed in Xerox Security Bulletin XRX06-001 at http://www.xerox.com/downloads/usa/en/c/cert_XRX06_001.pdf |
Related URL |
CVE-2006-0825,CVE-2006-0826,CVE-2006-0827,CVE-2006-0828 (CVE) |
Related URL |
16723,16726,16727 (SecurityFocus) |
Related URL |
24804,24805,24806 (ISS) |
|