Lucene search
MitreCVE-2008-0303HistoryFeb 29, 2008 - 2:44 a.m.
CVE-2008-0303
2008-02-2902:44:00
mitre
web.nvd.nist.gov
29
canon
printers
ftp
vulnerability
security
nvd
CVSS2
6.4
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:P/A:P
AI Score
6.5
Confidence
Low
EPSS
0.011
Percentile
84.4%
The FTP print feature in multiple Canon printers, including imageRUNNER and imagePRESS, allow remote attackers to use the server as an inadvertent proxy via a modified PORT command, aka FTP bounce.
Affected configurations
Node
canoni-sensysMatchlbp3360
ORcanoni-sensysMatchlbp3460
ORcanoni-sensysMatchlbp5360
ORcanonimagepressMatchc1
ORcanonimagerunnerMatch85plus
ORcanonimagerunnerMatch105plus
ORcanonimagerunnerMatch2230
ORcanonimagerunnerMatch2270
ORcanonimagerunnerMatch2570c
ORcanonimagerunnerMatch2570ci
ORcanonimagerunnerMatch2870
ORcanonimagerunnerMatch3025
ORcanonimagerunnerMatch3025n
ORcanonimagerunnerMatch3035
ORcanonimagerunnerMatch3035n
ORcanonimagerunnerMatch3045
ORcanonimagerunnerMatch3045n
ORcanonimagerunnerMatch3170c
ORcanonimagerunnerMatch3170ci
ORcanonimagerunnerMatch3180c
ORcanonimagerunnerMatch3180ci
ORcanonimagerunnerMatch3530
ORcanonimagerunnerMatch3570
ORcanonimagerunnerMatch4570
ORcanonimagerunnerMatch5055
ORcanonimagerunnerMatch5055n
ORcanonimagerunnerMatch5065
ORcanonimagerunnerMatch5065n
ORcanonimagerunnerMatch5075
ORcanonimagerunnerMatch5075n
ORcanonimagerunnerMatch5570
ORcanonimagerunnerMatch5800c
ORcanonimagerunnerMatch5800cn
ORcanonimagerunnerMatch6570
ORcanonimagerunnerMatch6800c
ORcanonimagerunnerMatch6800cn
ORcanonimagerunnerMatch7086
ORcanonimagerunnerMatch7095
ORcanonimagerunnerMatch7095p
ORcanonimagerunnerMatch7105
ORcanonimagerunnerMatch8070
ORcanonimagerunnerMatchc2380i
ORcanonimagerunnerMatchc2620
ORcanonimagerunnerMatchc2620n
ORcanonimagerunnerMatchc2880
ORcanonimagerunnerMatchc2880i
ORcanonimagerunnerMatchc3220n
ORcanonimagerunnerMatchc3380
ORcanonimagerunnerMatchc3380i
ORcanonimagerunnerMatchc4080i
ORcanonimagerunnerMatchc4580i
ORcanonimagerunnerMatchc5185i
ORcanonimagerunnerMatchc5870
ORcanonimagerunnerMatchc5870i
ORcanonimagerunnerMatchc5880
ORcanonimagerunnerMatchc5880i
ORcanonimagerunnerMatchc6870i
ORcanonimagerunnerMatchc6880
ORcanonimagerunnerMatchc6880i
ORcanonimagerunnerMatchclc4040
ORcanonimagerunnerMatchclc5151
ORcanonimagerunner_2620
ORcanonimagerunner_5000i
ORcanonimagerunner_5020
ORcanonimagerunner_6870
ORcanonimagerunner_8500
ORcanonimagerunner_9070
ORcanonimagerunner_c3200
ORcanonimagerunner_c3220
ORcanonimagerunner_c6800
| Vendor | Product | Version | CPE |
|---|---|---|---|
| canon | i-sensys | lbp3360 | cpe:2.3:a:canon:i-sensys:lbp3360:*:*:*:*:*:*:* |
| canon | i-sensys | lbp3460 | cpe:2.3:a:canon:i-sensys:lbp3460:*:*:*:*:*:*:* |
| canon | i-sensys | lbp5360 | cpe:2.3:a:canon:i-sensys:lbp5360:*:*:*:*:*:*:* |
| canon | imagepress | c1 | cpe:2.3:a:canon:imagepress:c1:*:*:*:*:*:*:* |
| canon | imagerunner | 85plus | cpe:2.3:a:canon:imagerunner:85plus:*:*:*:*:*:*:* |
| canon | imagerunner | 105plus | cpe:2.3:a:canon:imagerunner:105plus:*:*:*:*:*:*:* |
| canon | imagerunner | 2230 | cpe:2.3:a:canon:imagerunner:2230:*:*:*:*:*:*:* |
| canon | imagerunner | 2270 | cpe:2.3:a:canon:imagerunner:2270:*:*:*:*:*:*:* |
| canon | imagerunner | 2570c | cpe:2.3:a:canon:imagerunner:2570c:*:*:*:*:*:*:* |
| canon | imagerunner | 2570ci | cpe:2.3:a:canon:imagerunner:2570ci:*:*:*:*:*:*:* |
Related
prion
prion
Design/Logic Flaw
2008-02-29 02:44:00
securityvulns
securityvulns
Canon Multi Function Devices FTP bounce attack
2008-02-29 00:00:00
cvelist
cvelist
CVE-2008-0303
2008-02-29 02:00:00
cert
cert
Canon digital multifunction copiers FTP bounce vulnerability
2008-02-28 00:00:00
jvn
jvn
nvd
nvd
CVE-2008-0303
2008-02-29 02:44:00
CVSS2
6.4
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:P/A:P
AI Score
6.5
Confidence
Low
EPSS
0.011
Percentile
84.4%
Related for CVE-2008-0303