Lucene search

[email protected]CVE-2006-2112

HistoryAug 25, 2006 - 1:04 a.m.

CVE-2006-2112

2006-08-2501:04:00

CWE-264

[email protected]

web.nvd.nist.gov

cve-2006-2112

fuji xerox

fxps

ftp printing

ftp bounce

network option card

dell

docuprint

security vulnerability

7.2 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.024 Low

EPSS

Percentile

89.8%

JSON

Fuji Xerox Printing Systems (FXPS) print engine, as used in products including (1) Dell 3000cn through 5110cn and (2) Fuji Xerox DocuPrint firmware before 20060628 and Network Option Card firmware before 5.13, allows remote attackers to use the FTP printing interface as a proxy (“FTP bounce”) by using arbitrary PORT arguments to connect to systems for which access would be otherwise restricted.

CPENameOperatorVersion
fuji_xerox:docuprint_c830_network_option_cardfuji xerox docuprint c830 network option cardeq*
fuji_xerox:fuji_xerox_printing_systems_print_enginefuji xerox fuji xerox printing systems print engineeq*
dell:3100cndell 3100cneq*
dell:5110cndell 5110cneq*
fuji_xerox:docuprint_181_network_option_cardfuji xerox docuprint 181 network option cardeq*
dell:3110cndell 3110cneq*
fuji_xerox:phaser_6201jfuji xerox phaser 6201jeq*
dell:3010cndell 3010cneq*
dell:5100cndell 5100cneq*
dell:3000cndell 3000cneq*

CPE	Name	Operator	Version
fuji_xerox:docuprint_c830_network_option_card	fuji xerox docuprint c830 network option card	eq	*
fuji_xerox:fuji_xerox_printing_systems_print_engine	fuji xerox fuji xerox printing systems print engine	eq	*
dell:3100cn	dell 3100cn	eq	*
dell:5110cn	dell 5110cn	eq	*
fuji_xerox:docuprint_181_network_option_card	fuji xerox docuprint 181 network option card	eq	*
dell:3110cn	dell 3110cn	eq	*
fuji_xerox:phaser_6201j	fuji xerox phaser 6201j	eq	*
dell:3010cn	dell 3010cn	eq	*
dell:5100cn	dell 5100cn	eq	*
dell:3000cn	dell 3000cn	eq	*

Rows per page:

1-10 of 191

References

itso.iu.edu/20060824_FXPS_Print_Engine_Vulnerabilities

marc.info/?l=bugtraq&m=115652437223454&w=2

secunia.com/advisories/21630

secunia.com/advisories/22463

www.osvdb.org/28249

www.securityfocus.com/archive/1/444321/100/0/threaded

www.securityfocus.com/bid/19711

www.vupen.com/english/advisories/2006/3401

exchange.xforce.ibmcloud.com/vulnerabilities/28637

7.2 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.024 Low

EPSS

Percentile

89.8%

JSON

Related for CVE-2006-2112

prion1 securityvulns1