1. CVE-Search
  2. CVE-2009-1656
ID CVE-2009-1656
Summary Xerox WorkCentre and WorkCentre Pro 232, 238, 245, 255, 265, 275; and WorkCentre 5632, 5638, 5645, 5655, 5665, 5675, 5687, 7655, 7656, and 7675 allows remote attackers to execute arbitrary commands via unknown attack vectors, aka "command injection vulnerability."
References
Vulnerable Configurations
  • cpe:2.3:h:xerox:workcentre:232:*:*:*:*:*:*:*
    cpe:2.3:h:xerox:workcentre:232:*:*:*:*:*:*:*
  • cpe:2.3:h:xerox:workcentre:232:*:pro:*:*:*:*:*
    cpe:2.3:h:xerox:workcentre:232:*:pro:*:*:*:*:*
  • cpe:2.3:h:xerox:workcentre:238:*:*:*:*:*:*:*
    cpe:2.3:h:xerox:workcentre:238:*:*:*:*:*:*:*
  • cpe:2.3:h:xerox:workcentre:238:*:pro:*:*:*:*:*
    cpe:2.3:h:xerox:workcentre:238:*:pro:*:*:*:*:*
  • cpe:2.3:h:xerox:workcentre:245:*:*:*:*:*:*:*
    cpe:2.3:h:xerox:workcentre:245:*:*:*:*:*:*:*
  • cpe:2.3:h:xerox:workcentre:245:*:pro:*:*:*:*:*
    cpe:2.3:h:xerox:workcentre:245:*:pro:*:*:*:*:*
  • cpe:2.3:h:xerox:workcentre:255:*:*:*:*:*:*:*
    cpe:2.3:h:xerox:workcentre:255:*:*:*:*:*:*:*
  • cpe:2.3:h:xerox:workcentre:255:*:pro:*:*:*:*:*
    cpe:2.3:h:xerox:workcentre:255:*:pro:*:*:*:*:*
  • cpe:2.3:h:xerox:workcentre:265:*:*:*:*:*:*:*
    cpe:2.3:h:xerox:workcentre:265:*:*:*:*:*:*:*
  • cpe:2.3:h:xerox:workcentre:265:*:pro:*:*:*:*:*
    cpe:2.3:h:xerox:workcentre:265:*:pro:*:*:*:*:*
  • cpe:2.3:h:xerox:workcentre:275:*:*:*:*:*:*:*
    cpe:2.3:h:xerox:workcentre:275:*:*:*:*:*:*:*
  • cpe:2.3:h:xerox:workcentre:275:pro:*:*:*:*:*:*
    cpe:2.3:h:xerox:workcentre:275:pro:*:*:*:*:*:*
  • cpe:2.3:h:xerox:workcentre:5632:*:*:*:*:*:*:*
    cpe:2.3:h:xerox:workcentre:5632:*:*:*:*:*:*:*
  • cpe:2.3:h:xerox:workcentre:5638:*:*:*:*:*:*:*
    cpe:2.3:h:xerox:workcentre:5638:*:*:*:*:*:*:*
  • cpe:2.3:h:xerox:workcentre:5645:*:*:*:*:*:*:*
    cpe:2.3:h:xerox:workcentre:5645:*:*:*:*:*:*:*
  • cpe:2.3:h:xerox:workcentre:5655:*:*:*:*:*:*:*
    cpe:2.3:h:xerox:workcentre:5655:*:*:*:*:*:*:*
  • cpe:2.3:h:xerox:workcentre:5665:*:*:*:*:*:*:*
    cpe:2.3:h:xerox:workcentre:5665:*:*:*:*:*:*:*
  • cpe:2.3:h:xerox:workcentre:5675:*:*:*:*:*:*:*
    cpe:2.3:h:xerox:workcentre:5675:*:*:*:*:*:*:*
  • cpe:2.3:h:xerox:workcentre:5687:*:*:*:*:*:*:*
    cpe:2.3:h:xerox:workcentre:5687:*:*:*:*:*:*:*
  • cpe:2.3:h:xerox:workcentre:7655:*:*:*:*:*:*:*
    cpe:2.3:h:xerox:workcentre:7655:*:*:*:*:*:*:*
  • cpe:2.3:h:xerox:workcentre:7665:*:*:*:*:*:*:*
    cpe:2.3:h:xerox:workcentre:7665:*:*:*:*:*:*:*
  • cpe:2.3:h:xerox:workcentre:7675:*:*:*:*:*:*:*
    cpe:2.3:h:xerox:workcentre:7675:*:*:*:*:*:*:*
CVSS
Base: 10.0 (as of 17-08-2017 - 01:30)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
cvss-vector via4 AV:N/AC:L/Au:N/C:C/I:C/A:C
refmap via4
bid 34984
confirm http://www.xerox.com/downloads/usa/en/c/cert_XRX09-02_v1.0.pdf
osvdb 54457
sectrack 1022238
secunia 35101
vupen ADV-2009-1328
xf workcentre-unspecified-cmd-execution(50558)
Last major update 17-08-2017 - 01:30
Published 16-05-2009 - 18:30
Last modified 17-08-2017 - 01:30
Back to Top