CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
AI Score
Confidence
Low
EPSS
Percentile
90.5%
Directory traversal vulnerability in the HP Color LaserJet 2500 Toolbox and Color LaserJet 4600 Toolbox on Microsoft Windows before 20060402 allows remote attackers to read arbitrary files via a … (dot dot) in an HTTP GET request to TCP port 5225.
Vendor | Product | Version | CPE |
---|---|---|---|
hp | color_laserjet_2500_toolbox | * | cpe:2.3:a:hp:color_laserjet_2500_toolbox:*:*:*:*:*:*:*:* |
hp | color_laserjet_4600_toolbox | * | cpe:2.3:a:hp:color_laserjet_4600_toolbox:*:*:*:*:*:*:*:* |
hp | color_laserjet | 4600dn | cpe:2.3:h:hp:color_laserjet:4600dn:*:*:*:*:*:*:* |
hp | color_laserjet | 4600dtn | cpe:2.3:h:hp:color_laserjet:4600dtn:*:*:*:*:*:*:* |
hp | color_laserjet | 4600hdn | cpe:2.3:h:hp:color_laserjet:4600hdn:*:*:*:*:*:*:* |
hp | color_laserjet_2500 | * | cpe:2.3:h:hp:color_laserjet_2500:*:*:*:*:*:*:*:* |
hp | color_laserjet_2500l | * | cpe:2.3:h:hp:color_laserjet_2500l:*:*:*:*:*:*:*:* |
hp | color_laserjet_2500lse | * | cpe:2.3:h:hp:color_laserjet_2500lse:*:*:*:*:*:*:*:* |
hp | color_laserjet_2500n | * | cpe:2.3:h:hp:color_laserjet_2500n:*:*:*:*:*:*:*:* |
hp | color_laserjet_2500tn | * | cpe:2.3:h:hp:color_laserjet_2500tn:*:*:*:*:*:*:*:* |
archives.neohapsis.com/archives/fulldisclosure/2006-04/0085.html
secunia.com/advisories/19529
securitytracker.com/id?1015862
www.osvdb.org/24396
www.securityfocus.com/archive/1/429893/100/0/threaded
www.securityfocus.com/archive/1/429984/100/0/threaded
www.securityfocus.com/bid/17367
www.vupen.com/english/advisories/2006/1230
exchange.xforce.ibmcloud.com/vulnerabilities/25627