Lucene search

[email protected]CVE-2010-0549

HistoryOct 03, 2022 - 4:21 p.m.

CVE-2010-0549

2022-10-0316:21:10

CWE-200

[email protected]

web.nvd.nist.gov

xerox

workcentre

6400

remote

directory structure

access

vulnerability

cve-2010-0549

nvd

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

6.8 Medium

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

68.7%

JSON

Unspecified vulnerability in the Network Controller in Xerox WorkCentre 6400 System Software 060.070.109.11407 through 060.070.109.29510, and Net Controller 060.079.11410 through 060.079.29310, allows remote attackers to access “directory structure” via a crafted PostScript file, aka “Unauthorized Directory Structure Access Vulnerability.”

Affected configurations

NVD

Node

xeroxworkcentre_6400_net_controllerMatch060.079.11410

xeroxworkcentre_6400_net_controllerMatch060.079.29310

xeroxworkcentre_6400_system_softwareMatch060.070.109.11407

xeroxworkcentre_6400_system_softwareMatch060.070.109.29510

CPENameOperatorVersion
xerox:workcentre_6400_net_controllerxerox workcentre 6400 net controllereq060.079.11410
xerox:workcentre_6400_net_controllerxerox workcentre 6400 net controllereq060.079.29310
xerox:workcentre_6400_system_softwarexerox workcentre 6400 system softwareeq060.070.109.11407
xerox:workcentre_6400_system_softwarexerox workcentre 6400 system softwareeq060.070.109.29510

CPE	Name	Operator	Version
xerox:workcentre_6400_net_controller	xerox workcentre 6400 net controller	eq	060.079.11410
xerox:workcentre_6400_net_controller	xerox workcentre 6400 net controller	eq	060.079.29310
xerox:workcentre_6400_system_software	xerox workcentre 6400 system software	eq	060.070.109.11407
xerox:workcentre_6400_system_software	xerox workcentre 6400 system software	eq	060.070.109.29510

References

secunia.com/advisories/38339

www.securitytracker.com/id?1023500

www.vupen.com/english/advisories/2010/0208

www.xerox.com/downloads/usa/en/c/cert_XRX10-001_v1.0.pdf

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

6.8 Medium

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

68.7%

JSON

Related for CVE-2010-0549

prion1 nessus1 cvelist1 nvd1