Lucene search

[email protected]CVE-2006-6433

HistoryDec 10, 2006 - 11:28 a.m.

CVE-2006-6433

2006-12-1011:28:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

xerox

workcentre

workcentre pro

timestamp

vulnerability

cve-2006-6433

nvd

security issue

remote attack

7.5 High

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

0.007 Low

EPSS

Percentile

79.3%

JSON

Xerox WorkCentre and WorkCentre Pro before 12.060.17.000, 13.x before 13.060.17.000, and 14.x before 14.060.17.000 does not record accurate timestamps, which makes it easier for remote attackers to avoid detection when an audit tries to rely on these timestamps.

CPENameOperatorVersion
xerox:workcentrexerox workcentreeq12.060.17.000
xerox:workcentrexerox workcentreeq13.060.17.000
xerox:workcentrexerox workcentreeq14.060.17.000

CPE	Name	Operator	Version
xerox:workcentre	xerox workcentre	eq	12.060.17.000
xerox:workcentre	xerox workcentre	eq	13.060.17.000
xerox:workcentre	xerox workcentre	eq	14.060.17.000

References

secunia.com/advisories/23265

www.vupen.com/english/advisories/2006/4791

www.xerox.com/downloads/usa/en/c/cert_XRX06_006_v1b.pdf

7.5 High

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

0.007 Low

EPSS

Percentile

79.3%

JSON