1. CVE-Search
  2. CVE-2006-1137
ID CVE-2006-1137
Summary Multiple unspecified vulnerabilities in Xerox CopyCentre and Xerox WorkCentre Pro, running software 1.001.02.073 or earlier, or 1.001.02.074 before 1.001.02.715, allow remote attackers to cause an unspecified denial of service via a crafted PostScript file that will (1) "navigate through the directory" or (2) a "file sent to expose TCP/IP ports".
References
Vulnerable Configurations
  • cpe:2.3:o:xerox:copycentre_c65_firmware:*:*:*:*:*:*:*:*
    cpe:2.3:o:xerox:copycentre_c65_firmware:*:*:*:*:*:*:*:*
  • cpe:2.3:h:xerox:copycentre_c65:-:*:*:*:*:*:*:*
    cpe:2.3:h:xerox:copycentre_c65:-:*:*:*:*:*:*:*
  • cpe:2.3:o:xerox:copycentre_c75_firmware:*:*:*:*:*:*:*:*
    cpe:2.3:o:xerox:copycentre_c75_firmware:*:*:*:*:*:*:*:*
  • cpe:2.3:h:xerox:copycentre_c75:-:*:*:*:*:*:*:*
    cpe:2.3:h:xerox:copycentre_c75:-:*:*:*:*:*:*:*
  • cpe:2.3:o:xerox:copycentre_c90_firmware:*:*:*:*:*:*:*:*
    cpe:2.3:o:xerox:copycentre_c90_firmware:*:*:*:*:*:*:*:*
  • cpe:2.3:h:xerox:copycentre_c90:-:*:*:*:*:*:*:*
    cpe:2.3:h:xerox:copycentre_c90:-:*:*:*:*:*:*:*
  • cpe:2.3:o:xerox:workcentre_pro_65_firmware:*:*:*:*:*:*:*:*
    cpe:2.3:o:xerox:workcentre_pro_65_firmware:*:*:*:*:*:*:*:*
  • cpe:2.3:h:xerox:workcentre_pro_65:-:*:*:*:*:*:*:*
    cpe:2.3:h:xerox:workcentre_pro_65:-:*:*:*:*:*:*:*
  • cpe:2.3:o:xerox:workcentre_pro_75_firmware:*:*:*:*:*:*:*:*
    cpe:2.3:o:xerox:workcentre_pro_75_firmware:*:*:*:*:*:*:*:*
  • cpe:2.3:h:xerox:workcentre_pro_75:-:*:*:*:*:*:*:*
    cpe:2.3:h:xerox:workcentre_pro_75:-:*:*:*:*:*:*:*
  • cpe:2.3:o:xerox:workcentre_pro_90_firmware:*:*:*:*:*:*:*:*
    cpe:2.3:o:xerox:workcentre_pro_90_firmware:*:*:*:*:*:*:*:*
  • cpe:2.3:h:xerox:workcentre_pro_90:-:*:*:*:*:*:*:*
    cpe:2.3:h:xerox:workcentre_pro_90:-:*:*:*:*:*:*:*
CVSS
Base: 5.0 (as of 04-10-2018 - 22:11)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE PARTIAL
cvss-vector via4 AV:N/AC:L/Au:N/C:N/I:N/A:P
refmap via4
bid 17014
confirm http://www.xerox.com/downloads/usa/en/c/cert_XRX06_002.pdf
osvdb
  • 23725
  • 23726
sectrack 1015738
secunia 19146
vupen ADV-2006-0857
xf
  • xerox-postscript-navigate-dos(25173)
  • xerox-postscript-tcpip-dos(25174)
Last major update 04-10-2018 - 22:11
Published 10-03-2006 - 02:02
Last modified 04-10-2018 - 22:11
Back to Top