| VID |
29137 |
| Severity |
40 |
| Port |
80, ... |
| Protocol |
TCP |
| Class |
Printer |
| Detailed Description |
The Xerox WorkCentre device, according to its version number, has multiple vulnerabilities (XRX07-001). Xerox WorkCentre is a color printer used for copying, printing, scans, email, fax, and Internet fax. Multiple versions of Xerox WorkCentre and Xerox WorkCentre Pro are vulnerable to multiple vulnerabilities, which can be exploited by a remote attacker to gain unauthorized access to affected devices, make unauthorized changes to system configuration, and bypass security restrictions or anonymously retrieve secure files.
* Note: This check solely relied on the model number and software version number of the remote Xerox WorkCentre device extracted from its embedded Web server to assess this vulnerability, so this might be a false positive.
* References:
http://www.xerox.com/downloads/usa/en/c/cert_ESSNetwork_XRX07001_v1.pdf
http://secunia.com/advisories/25889/
* Platforms Affected:
Xerox WorkCentre 232/238/245/255/265/275
Xerox WorkCentre 7655/7665
Xerox WorkCentre Pro 232/238/245/255/265/275 |
| Recommendation |
Install System Software Versions *.60.17.000, *.60.22.000 or later, as listed in Xerox Security Bulletin XRX07-001 at http://www.xerox.com/downloads/usa/en/c/cert_ESSNetwork_XRX07001_v1.pdf |
| Related URL |
(CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
