Lucene search
HistoryMay 16, 2009 - 6:30 p.m.
CVE-2009-1656
cve-2009-1656
xerox
workcentre
workcentre pro
command injection vulnerability
remote execution
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
8.2 High
AI Score
Confidence
Low
0.011 Low
EPSS
Percentile
84.4%
Xerox WorkCentre and WorkCentre Pro 232, 238, 245, 255, 265, 275; and WorkCentre 5632, 5638, 5645, 5655, 5665, 5675, 5687, 7655, 7656, and 7675 allows remote attackers to execute arbitrary commands via unknown attack vectors, aka “command injection vulnerability.”
Affected configurations
Node
xeroxworkcentreMatch232
ORxeroxworkcentreMatch232pro
ORxeroxworkcentreMatch238
ORxeroxworkcentreMatch238pro
ORxeroxworkcentreMatch245
ORxeroxworkcentreMatch245pro
ORxeroxworkcentreMatch255
ORxeroxworkcentreMatch255pro
ORxeroxworkcentreMatch265
ORxeroxworkcentreMatch265pro
ORxeroxworkcentreMatch275
ORxeroxworkcentreMatch275pro
ORxeroxworkcentreMatch5632
ORxeroxworkcentreMatch5638
ORxeroxworkcentreMatch5645
ORxeroxworkcentreMatch5655
ORxeroxworkcentreMatch5665
ORxeroxworkcentreMatch5675
ORxeroxworkcentreMatch5687
ORxeroxworkcentreMatch7655
ORxeroxworkcentreMatch7665
ORxeroxworkcentreMatch7675
Related
nessus
nessus
Xerox WorkCentre Web Server Unspecified Command Injection (XRX09-002)
2009-05-15 00:00:00
cvelist
cvelist
CVE-2009-1656
2009-05-16 18:00:00
prion
prion
Command injection
2009-05-16 18:30:00
nvd
nvd
CVE-2009-1656
2009-05-16 18:30:00
10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
8.2 High
AI Score
Confidence
Low
0.011 Low
EPSS
Percentile
84.4%
Related for CVE-2009-1656