[Forgot Password]
Login  Register Subscribe

30430

 
 

423868

 
 

247862

 
 

909

 
 

194603

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2006-2112Date: (C)2006-08-24   (M)2023-12-22


Fuji Xerox Printing Systems (FXPS) print engine, as used in products including (1) Dell 3000cn through 5110cn and (2) Fuji Xerox DocuPrint firmware before 20060628 and Network Option Card firmware before 5.13, allows remote attackers to use the FTP printing interface as a proxy ("FTP bounce") by using arbitrary PORT arguments to connect to systems for which access would be otherwise restricted.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 7.5
Exploit Score: 10.0
Impact Score: 6.4
 
CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality: PARTIAL
Integrity: PARTIAL
Availability: PARTIAL
  
Reference:
BID-19711
http://marc.info/?l=bugtraq&m=115652437223454&w=2
http://www.securityfocus.com/archive/1/444321/100/0/threaded
SECUNIA-21630
SECUNIA-22463
OSVDB-28249
ADV-2006-3401
fxps-port-security-bypass(28637)
http://itso.iu.edu/20060824_FXPS_Print_Engine_Vulnerabilities

CPE    6
cpe:/h:dell:5100cn
cpe:/h:dell:5110cn
cpe:/h:dell:3010cn
cpe:/h:dell:3000cn
...
CWE    1
CWE-264

© SecPod Technologies