Lucene search

[email protected]NVD:CVE-2006-2112

HistoryAug 25, 2006 - 1:04 a.m.

CVE-2006-2112

2006-08-2501:04:00

CWE-264

[email protected]

web.nvd.nist.gov

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

6.9

Confidence

Low

EPSS

0.024

Percentile

90.0%

JSON

Fuji Xerox Printing Systems (FXPS) print engine, as used in products including (1) Dell 3000cn through 5110cn and (2) Fuji Xerox DocuPrint firmware before 20060628 and Network Option Card firmware before 5.13, allows remote attackers to use the FTP printing interface as a proxy (“FTP bounce”) by using arbitrary PORT arguments to connect to systems for which access would be otherwise restricted.

Affected configurations

Nvd

Node

dell3000cn

dell3010cn

dell3100cn

dell3110cn

dell5100cn

dell5110cn

fuji_xeroxdocuprint_181

fuji_xeroxdocuprint_181_network_option_card

fuji_xeroxdocuprint_211

fuji_xeroxdocuprint_211_network_option_card

fuji_xeroxdocuprint_c1616

fuji_xeroxdocuprint_c1616_network_option_card

fuji_xeroxdocuprint_c2535a

fuji_xeroxdocuprint_c525a

fuji_xeroxdocuprint_c525a_network_option_card

fuji_xeroxdocuprint_c830

fuji_xeroxdocuprint_c830_network_option_card

fuji_xeroxfuji_xerox_printing_systems_print_engine

fuji_xeroxphaser_6201j

VendorProductVersionCPE
dell3000cn*cpe:2.3:h:dell:3000cn:*:*:*:*:*:*:*:*
dell3010cn*cpe:2.3:h:dell:3010cn:*:*:*:*:*:*:*:*
dell3100cn*cpe:2.3:h:dell:3100cn:*:*:*:*:*:*:*:*
dell3110cn*cpe:2.3:h:dell:3110cn:*:*:*:*:*:*:*:*
dell5100cn*cpe:2.3:h:dell:5100cn:*:*:*:*:*:*:*:*
dell5110cn*cpe:2.3:h:dell:5110cn:*:*:*:*:*:*:*:*
fuji_xeroxdocuprint_181*cpe:2.3:h:fuji_xerox:docuprint_181:*:*:*:*:*:*:*:*
fuji_xeroxdocuprint_181_network_option_card*cpe:2.3:h:fuji_xerox:docuprint_181_network_option_card:*:*:*:*:*:*:*:*
fuji_xeroxdocuprint_211*cpe:2.3:h:fuji_xerox:docuprint_211:*:*:*:*:*:*:*:*
fuji_xeroxdocuprint_211_network_option_card*cpe:2.3:h:fuji_xerox:docuprint_211_network_option_card:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
dell	3000cn	*	cpe:2.3:h:dell:3000cn::::::::
dell	3010cn	*	cpe:2.3:h:dell:3010cn::::::::
dell	3100cn	*	cpe:2.3:h:dell:3100cn::::::::
dell	3110cn	*	cpe:2.3:h:dell:3110cn::::::::
dell	5100cn	*	cpe:2.3:h:dell:5100cn::::::::
dell	5110cn	*	cpe:2.3:h:dell:5110cn::::::::
fuji_xerox	docuprint_181	*	cpe:2.3:h:fuji_xerox:docuprint_181::::::::
fuji_xerox	docuprint_181_network_option_card	*	cpe:2.3:h:fuji_xerox:docuprint_181_network_option_card::::::::
fuji_xerox	docuprint_211	*	cpe:2.3:h:fuji_xerox:docuprint_211::::::::
fuji_xerox	docuprint_211_network_option_card	*	cpe:2.3:h:fuji_xerox:docuprint_211_network_option_card::::::::

Rows per page:

1-10 of 191

References

itso.iu.edu/20060824_FXPS_Print_Engine_Vulnerabilities

marc.info/?l=bugtraq&m=115652437223454&w=2

secunia.com/advisories/21630

secunia.com/advisories/22463

www.osvdb.org/28249

www.securityfocus.com/archive/1/444321/100/0/threaded

www.securityfocus.com/bid/19711

www.vupen.com/english/advisories/2006/3401

exchange.xforce.ibmcloud.com/vulnerabilities/28637

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

6.9

Confidence

Low

EPSS

0.024

Percentile

90.0%

JSON

Related for NVD:CVE-2006-2112

cvelist1 cve1 prion1 securityvulns1