CVE-2006-5290

2006-10-1320:00:00

mitre

www.cve.org

AI Score

8.2

Confidence

Low

EPSS

0.09

Percentile

94.7%

JSON

The ESS/ Network Controller and MicroServer Web Server components of Xerox WorkCentre and WorkCentre Pro 232, 238, 245, 255, 265 and 275 allow remote attackers to bypass authentication and execute arbitrary code via “WebUI command injection on TCP/IP hostname.”

References

secunia.com/advisories/22252

securitytracker.com/id?1016981

www.securityfocus.com/bid/20334/info

www.vupen.com/english/advisories/2006/3921

www.xerox.com/downloads/usa/en/c/cert_XRX06_005.pdf

exchange.xforce.ibmcloud.com/vulnerabilities/29357