CVE-2006-0828

Unspecified vulnerability in ESS/ Network Controller and MicroServer Web Server in Xerox WorkCentre Pro and Xerox WorkCentre running software 13.027.24.015 and 14.027.24.015 allows remote attackers to "reduce effectiveness of security features" via unknown attack vectors.

CVSS v2.0 5.0 MEDIUM

5.0^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:L/Au:N/C:N/I:P/A:N

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact PARTIAL

Availability Impact NONE

References

Link	Resource
http://www.xerox.com/downloads/usa/en/c/cert_XRX06_001.pdf	Patch Vendor Advisory
http://secunia.com/advisories/18952	Vendor Advisory
http://securitytracker.com/id?1015648
http://www.vupen.com/english/advisories/2006/0668

Advertisement

Configurations

Configuration 1 (hide)

OR	cpe:2.3:h:xerox:workcentre_255:::pro:::::*
	cpe:2.3:h:xerox:workcentre_265::::::::
	cpe:2.3:h:xerox:workcentre_238::::::::
	cpe:2.3:h:xerox:workcentre_238:::pro:::::*
	cpe:2.3:h:xerox:workcentre_245::::::::
	cpe:2.3:h:xerox:workcentre_275:::pro:::::*
	cpe:2.3:h:xerox:workcentre_245:::pro:::::*
	cpe:2.3:h:xerox:workcentre_255::::::::
	cpe:2.3:h:xerox:workcentre_232::::::::
	cpe:2.3:h:xerox:workcentre_232:::pro:::::*
	cpe:2.3:h:xerox:workcentre_265:::pro:::::*
	cpe:2.3:h:xerox:workcentre_275::::::::

Information

Published : 2006-02-21 15:02

Updated : 2011-03-07 18:30

NVD link : CVE-2006-0828

Mitre link : CVE-2006-0828

JSON object : View

CWE

NVD-CWE-Other

Advertisement

Products Affected

xerox

workcentre_275
workcentre_265
workcentre_255
workcentre_238
workcentre_232
workcentre_245

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://www.xerox.com/downloads/usa/en/c/cert_XRX06_001.pdf", "name": "http://www.xerox.com/downloads/usa/en/c/cert_XRX06_001.pdf", "tags": ["Patch", "Vendor Advisory"], "refsource": "CONFIRM"}, {"url": "http://secunia.com/advisories/18952", "name": "18952", "tags": ["Vendor Advisory"], "refsource": "SECUNIA"}, {"url": "http://securitytracker.com/id?1015648", "name": "1015648", "tags": [], "refsource": "SECTRACK"}, {"url": "http://www.vupen.com/english/advisories/2006/0668", "name": "ADV-2006-0668", "tags": [], "refsource": "VUPEN"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "Unspecified vulnerability in ESS/ Network Controller and MicroServer Web Server in Xerox WorkCentre Pro and Xerox WorkCentre running software 13.027.24.015 and 14.027.24.015 allows remote attackers to \"reduce effectiveness of security features\" via unknown attack vectors."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2006-0828", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "NONE"}, "severity": "MEDIUM", "impactScore": 2.9, "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}}, "publishedDate": "2006-02-21T23:02Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:h:xerox:workcentre_255:*:*:pro:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:xerox:workcentre_265:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:xerox:workcentre_238:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:xerox:workcentre_238:*:*:pro:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:xerox:workcentre_245:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:xerox:workcentre_275:*:*:pro:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:xerox:workcentre_245:*:*:pro:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:xerox:workcentre_255:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:xerox:workcentre_232:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:xerox:workcentre_232:*:*:pro:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:xerox:workcentre_265:*:*:pro:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:xerox:workcentre_275:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2011-03-08T02:30Z"}