CVE-2006-0826

Current Description

Unspecified vulnerability in ESS/ Network Controller and MicroServer Web Server in Xerox WorkCentre Pro and Xerox WorkCentre running software 13.027.24.015 and 14.027.24.015 allows remote attackers to cause a denial of service via a crafted Postscript request.

Basic Data

PublishedFebruary 21, 2006
Last ModifiedJuly 20, 2017
Assignercve@mitre.org
Data TypeCVE
Data FormatMITRE
Data Version4.0
Problem TypeNVD-CWE-Other
CVE Data Version4.0

Base Metric V2

CVSS 2 - Version2.0
CVSS 2 - Vector StringAV:N/AC:L/Au:N/C:N/I:N/A:P
CVSS 2 - Access VectorNETWORK
CVSS 2 - Access ComplexityLOW
CVSS 2 - AuthenticationNONE
CVSS 2 - Confidentiality ImpactNONE
CVSS 2 - Availability ImpactPARTIAL
CVSS 2 - Base Score5.0
SeverityMEDIUM
Exploitability Score10.0
Impact Score2.9
Obtain All Privilegefalse
Obtain User Privilegefalse
Obtain Other Privilegefalse

Base Metric V3

No data provided.

Configurations

  • OR - Configuration 1
    Cpe VersionPartVendorProductVersionUpdateEditionLanguageSW EditionTarget SWTarget HWOtherVersion Start IncludingVersion End IncludingVersion Start ExcludingVersion End Excluding
    2.3HardwareXeroxWorkcentre 232********
    2.3HardwareXeroxWorkcentre 232**pro*****
    2.3HardwareXeroxWorkcentre 238********
    2.3HardwareXeroxWorkcentre 238**pro*****
    2.3HardwareXeroxWorkcentre 245********
    2.3HardwareXeroxWorkcentre 245**pro*****
    2.3HardwareXeroxWorkcentre 255********
    2.3HardwareXeroxWorkcentre 255**pro*****
    2.3HardwareXeroxWorkcentre 265********
    2.3HardwareXeroxWorkcentre 265**pro*****
    2.3HardwareXeroxWorkcentre 275********
    2.3HardwareXeroxWorkcentre 275**pro*****

Vulnerable Software List

VendorProductVersions
Xerox Workcentre 265 *
Xerox Workcentre 275 *
Xerox Workcentre 232 *
Xerox Workcentre 238 *
Xerox Workcentre 245 *
Xerox Workcentre 255 *

References

NameSourceURLTags
18952http://secunia.com/advisories/18952SECUNIAVendor Advisory
1015648http://securitytracker.com/id?1015648SECTRACK
16723http://www.securityfocus.com/bid/16723BID
ADV-2006-0668http://www.vupen.com/english/advisories/2006/0668VUPEN
http://www.xerox.com/downloads/usa/en/c/cert_XRX06_001.pdfhttp://www.xerox.com/downloads/usa/en/c/cert_XRX06_001.pdfCONFIRMPatch Vendor Advisory
xerox-workcentre-postscript-dos(24805)https://exchange.xforce.ibmcloud.com/vulnerabilities/24805XF