Lucene search
MitreCVE-2006-6435HistoryDec 10, 2006 - 11:28 a.m.
CVE-2006-6435
2006-12-1011:28:00
mitre
web.nvd.nist.gov
27
snmp
xerox
workcentre
workcentre pro
cve-2006-6435
nvd
authentication failure
traps
remote attackers
system access
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7
Confidence
Low
EPSS
0.006
Percentile
79.1%
The SNMP implementation in Xerox WorkCentre and WorkCentre Pro before 12.050.03.000, 13.x before 13.050.03.000, and 14.x before 14.050.03.000 does not generate authentication failure traps, which allows remote attackers to more easily gain system access and obtain sensitive information via a brute force attack.
Affected configurations
Node
xeroxworkcentreMatch12.060.17.000
ORxeroxworkcentreMatch12.060.17.000pro
ORxeroxworkcentreMatch13.060.17.000
ORxeroxworkcentreMatch13.060.17.000pro
ORxeroxworkcentreMatch14.060.17.000
ORxeroxworkcentreMatch14.060.17.000pro
| Vendor | Product | Version | CPE |
|---|---|---|---|
| xerox | workcentre | 12.060.17.000 | cpe:2.3:h:xerox:workcentre:12.060.17.000:*:*:*:*:*:*:* |
| xerox | workcentre | 12.060.17.000 | cpe:2.3:h:xerox:workcentre:12.060.17.000:*:pro:*:*:*:*:* |
| xerox | workcentre | 13.060.17.000 | cpe:2.3:h:xerox:workcentre:13.060.17.000:*:*:*:*:*:*:* |
| xerox | workcentre | 13.060.17.000 | cpe:2.3:h:xerox:workcentre:13.060.17.000:*:pro:*:*:*:*:* |
| xerox | workcentre | 14.060.17.000 | cpe:2.3:h:xerox:workcentre:14.060.17.000:*:*:*:*:*:*:* |
| xerox | workcentre | 14.060.17.000 | cpe:2.3:h:xerox:workcentre:14.060.17.000:*:pro:*:*:*:*:* |
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7
Confidence
Low
EPSS
0.006
Percentile
79.1%
Related for CVE-2006-6435