{"id": "XEROX_XRX09_002.NASL", "bulletinFamily": "scanner", "title": "Xerox WorkCentre Web Server Unspecified Command Injection (XRX09-002)", "description": "According to its model number and software version, the remote host is a Xerox WorkCentre device that reportedly has an as-yet unspecified command injection vulnerability in its web server. A remote attacker may be able to leverage this issue to execute arbitrary code via carefully crafted inputs on an affected web page.", "published": "2009-05-15T00:00:00", "modified": "2018-11-15T00:00:00", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=38790", "reporter": "Tenable", "references": ["https://www.xerox.com/downloads/usa/en/c/cert_XRX09-02_v1.0.pdf"], "cvelist": ["CVE-2009-1656"], "type": "nessus", "lastseen": "2019-02-21T01:11:54", "history": [{"bulletin": {"bulletinFamily": "scanner", "cpe": ["cpe:/h:xerox:workcentre"], "cvelist": ["CVE-2009-1656"], "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "description": "According to its model number and software version, the remote host is a Xerox WorkCentre device that reportedly has an as-yet unspecified command injection vulnerability in its web server. A remote attacker may be able to leverage this issue to execute arbitrary code via carefully crafted inputs on an affected web page.", "edition": 7, "enchantments": {"score": {"value": 7.5, "vector": "NONE"}}, "hash": "ce4504b8a537657e14fef2f966f1e146cc60183ab496b113b0294db0bc0959aa", "hashmap": [{"hash": "b08db2ae55a278b3b88004ac380a56ce", "key": "cpe"}, {"hash": "811a7e2ea9db3f4d4cf3d86d52a67adc", "key": "description"}, {"hash": "211e10502af42974efea98b5c823badb", "key": "references"}, {"hash": "f988dc6e0b4d047c838adcca890ea132", "key": "naslFamily"}, {"hash": "9cf00d658b687f030ebe173a0528c567", "key": "reporter"}, {"hash": "015cb78ce50d3bd4e2fbe18f25603329", "key": "modified"}, {"hash": "2bdabeb49c44761f9565717ab0e38165", "key": "cvss"}, {"hash": "b9b993f4d1b942206120102f00b759fe", "key": "pluginID"}, {"hash": "2c227719cc867849af8d0d90406ee414", "key": "href"}, {"hash": "566a5975ebcf2dc7de8337df2e9f9052", "key": "published"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "5e0bd03bec244039678f2b955a2595aa", "key": "type"}, {"hash": "f22351df383e5b6ccfe11fc31d2da8fa", "key": "title"}, {"hash": "ae58e31772bd5730f2f5f6fab1567697", "key": "sourceData"}, {"hash": "163d6748503b652293ace9b05fe361ca", "key": "cvelist"}], "history": [], "href": "https://www.tenable.com/plugins/index.php?view=single&id=38790", "id": "XEROX_XRX09_002.NASL", "lastseen": "2018-11-17T02:55:20", "modified": "2018-11-15T00:00:00", "naslFamily": "Misc.", "objectVersion": "1.3", "pluginID": "38790", "published": "2009-05-15T00:00:00", "references": ["https://www.xerox.com/downloads/usa/en/c/cert_XRX09-02_v1.0.pdf"], "reporter": "Tenable", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(38790);\n script_version(\"1.13\");\n script_cvs_date(\"Date: 2018/11/15 20:50:24\");\n\n script_cve_id(\"CVE-2009-1656\");\n script_bugtraq_id(34984);\n script_xref(name:\"Secunia\", value:\"35101\");\n\n script_name(english:\"Xerox WorkCentre Web Server Unspecified Command Injection (XRX09-002)\");\n script_summary(english:\"Checks Net Controller Software version of Xerox WorkCentre devices\");\n\n script_set_attribute(\n attribute:\"synopsis\",\n value:\n\"The remote multi-function device is affected by a command injection\nvulnerability.\"\n );\n script_set_attribute(\n attribute:\"description\",\n value:\n\"According to its model number and software version, the remote host\nis a Xerox WorkCentre device that reportedly has an as-yet unspecified\ncommand injection vulnerability in its web server. A remote attacker\nmay be able to leverage this issue to execute arbitrary code via\ncarefully crafted inputs on an affected web page.\"\n );\n script_set_attribute(attribute:\"see_also\", value:\"https://www.xerox.com/downloads/usa/en/c/cert_XRX09-02_v1.0.pdf\");\n script_set_attribute(\n attribute:\"solution\",\n value:\n\"Apply the P38 patch as described in the Xerox security bulletin\nreferenced in the included URL.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2009/05/15\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2009/05/15\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2009/05/15\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"remote\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/h:xerox:workcentre\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Misc.\");\n\n script_copyright(english:\"This script is Copyright (C) 2009-2018 Tenable Network Security, Inc.\");\n\n script_dependencies(\"xerox_workcentre_detect.nasl\");\n script_require_keys(\"www/xerox_workcentre\");\n\n exit(0);\n}\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\n\n# This function returns TRUE if the version string ver lies in\n# the range [low, high].\nfunction ver_inrange(ver, low, high)\n{\n local_var ver_parts, low_parts, high_parts, i, p, low_p, high_p;\n\n if (isnull(ver) || isnull(low) || isnull(high)) return FALSE;\n\n # Split levels into parts.\n ver_parts = split(ver, sep:\".\", keep:0);\n low_parts = split(low, sep:\".\", keep:0);\n high_parts = split(high, sep:\".\", keep:0);\n\n # Compare each part.\n i = 0;\n while (ver_parts[i] != NULL)\n {\n p = int(ver_parts[i]);\n low_p = int(low_parts[i]);\n if (low_p == NULL) low_p = 0;\n high_p = int(high_parts[i]);\n if (high_p == NULL) high_p = 0;\n\n if (p > low_p && p < high_p) return TRUE;\n if (p < low_p || p > high_p) return FALSE;\n ++i;\n }\n return TRUE;\n}\n\n# Check whether the device is vulnerable.\nif (get_kb_item(\"www/xerox_workcentre\"))\n{\n model = get_kb_item_or_exit(\"www/xerox_workcentre/model\");\n ssw = get_kb_item_or_exit(\"www/xerox_workcentre/ssw\");\n if (ssw && \".\" >< ssw) ssw = strstr(ssw, \".\") - \".\";\n ess = get_kb_item_or_exit(\"www/xerox_workcentre/ess\");\n\n # No need to check further if ESS has \".P38\" since that\n # indicates the patch has already been applied.\n if (ess && ess =~ \"\\.P38\") audit(AUDIT_HOST_NOT, \"affected\");\n\n # Test model number and software version against those in Xerox's security bulletin.\n if (\n (\n # nb: models 232/238/245/255/265/275 with SSW in [*.27.24.000, *.60.22.050).\n model =~ \"^(Pro )?2(3[28]|[4-7]5)($|[^0-9])\" &&\n # nb: the leading part of the System SW has already been removed.\n ver_inrange(ver:ssw, low:\"27.24.000\", high:\"60.22.049\")\n ) ||\n (\n # nb: models 7655/7665/7675 with ESS in [040.032.000, 040.033.53110).\n model =~ \"^76[5-7]5($|[^0-9])\" &&\n ver_inrange(ver:ess, low:\"040.032.0\", high:\"040.033.53109\")\n ) ||\n (\n # nb: models 5632/5638/5645/5655/5665/5675/5687 with ESS in [050.060.50730, 050.060.50980].\n model =~ \"^56(32|38|[4-7]5|87)($|[^0-9])\" &&\n ver_inrange(ver:ess, low:\"050.060.50730\", high:\"050.060.50980\")\n )\n )\n security_hole(0);\n exit(0);\n}\naudit(AUDIT_HOST_NOT, \"affected\");\n", "title": "Xerox WorkCentre Web Server Unspecified Command Injection (XRX09-002)", "type": "nessus", "viewCount": 2}, "differentElements": ["description"], "edition": 7, "lastseen": "2018-11-17T02:55:20"}, {"bulletin": {"bulletinFamily": "scanner", "cpe": ["cpe:/h:xerox:workcentre"], "cvelist": ["CVE-2009-1656"], "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "description": "According to its model number and software version, the remote host is a Xerox WorkCentre device that reportedly has an as-yet unspecified command injection vulnerability in its web server. A remote attacker may be able to leverage this issue to execute arbitrary code via carefully crafted inputs on an affected web page.", "edition": 4, "enchantments": {"score": {"value": 7.5, "vector": "NONE"}}, "hash": "f67631833ce00e04dc28f112f1b472c1b453b0bee7cf54dbd28472cdefb81a92", "hashmap": [{"hash": "b08db2ae55a278b3b88004ac380a56ce", "key": "cpe"}, {"hash": "811a7e2ea9db3f4d4cf3d86d52a67adc", "key": "description"}, {"hash": "f988dc6e0b4d047c838adcca890ea132", "key": "naslFamily"}, {"hash": "9cf00d658b687f030ebe173a0528c567", "key": "reporter"}, {"hash": "81fb6c016928202483b4a6f2f49c7469", "key": "references"}, {"hash": "2bdabeb49c44761f9565717ab0e38165", "key": "cvss"}, {"hash": "b9b993f4d1b942206120102f00b759fe", "key": "pluginID"}, {"hash": "2c227719cc867849af8d0d90406ee414", "key": "href"}, {"hash": "02df8854c0afbb2dcfc6383b3215a9b8", "key": "sourceData"}, {"hash": "566a5975ebcf2dc7de8337df2e9f9052", "key": "published"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "5e0bd03bec244039678f2b955a2595aa", "key": "type"}, {"hash": "f22351df383e5b6ccfe11fc31d2da8fa", "key": "title"}, {"hash": "f310bf9180512c8bb6be0b0fd0fd4f6f", "key": "modified"}, {"hash": "163d6748503b652293ace9b05fe361ca", "key": "cvelist"}], "history": [], "href": "https://www.tenable.com/plugins/index.php?view=single&id=38790", "id": "XEROX_XRX09_002.NASL", "lastseen": "2018-08-10T17:04:06", "modified": "2018-08-07T00:00:00", "naslFamily": "Misc.", "objectVersion": "1.3", "pluginID": "38790", "published": "2009-05-15T00:00:00", "references": ["http://www.xerox.com/downloads/usa/en/c/cert_XRX09-02_v1.0.pdf"], "reporter": "Tenable", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(38790);\n script_version(\"1.12\");\n script_cvs_date(\"Date: 2018/08/07 16:46:51\");\n\n script_cve_id(\"CVE-2009-1656\");\n script_bugtraq_id(34984);\n script_xref(name:\"Secunia\", value:\"35101\");\n\n script_name(english:\"Xerox WorkCentre Web Server Unspecified Command Injection (XRX09-002)\");\n script_summary(english:\"Checks Net Controller Software version of Xerox WorkCentre devices\");\n\n script_set_attribute(\n attribute:\"synopsis\",\n value:\n\"The remote multi-function device is affected by a command injection\nvulnerability.\"\n );\n script_set_attribute(\n attribute:\"description\",\n value:\n\"According to its model number and software version, the remote host\nis a Xerox WorkCentre device that reportedly has an as-yet unspecified\ncommand injection vulnerability in its web server. A remote attacker\nmay be able to leverage this issue to execute arbitrary code via\ncarefully crafted inputs on an affected web page.\"\n );\n script_set_attribute(attribute:\"see_also\", value:\"http://www.xerox.com/downloads/usa/en/c/cert_XRX09-02_v1.0.pdf\");\n script_set_attribute(\n attribute:\"solution\",\n value:\n\"Apply the P38 patch as described in the Xerox security bulletin\nreferenced in the included URL.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2009/05/15\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2009/05/15\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2009/05/15\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"remote\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/h:xerox:workcentre\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Misc.\");\n\n script_copyright(english:\"This script is Copyright (C) 2009-2018 Tenable Network Security, Inc.\");\n\n script_dependencies(\"xerox_workcentre_detect.nasl\");\n script_require_keys(\"www/xerox_workcentre\");\n\n exit(0);\n}\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\n\n# This function returns TRUE if the version string ver lies in\n# the range [low, high].\nfunction ver_inrange(ver, low, high)\n{\n local_var ver_parts, low_parts, high_parts, i, p, low_p, high_p;\n\n if (isnull(ver) || isnull(low) || isnull(high)) return FALSE;\n\n # Split levels into parts.\n ver_parts = split(ver, sep:\".\", keep:0);\n low_parts = split(low, sep:\".\", keep:0);\n high_parts = split(high, sep:\".\", keep:0);\n\n # Compare each part.\n i = 0;\n while (ver_parts[i] != NULL)\n {\n p = int(ver_parts[i]);\n low_p = int(low_parts[i]);\n if (low_p == NULL) low_p = 0;\n high_p = int(high_parts[i]);\n if (high_p == NULL) high_p = 0;\n\n if (p > low_p && p < high_p) return TRUE;\n if (p < low_p || p > high_p) return FALSE;\n ++i;\n }\n return TRUE;\n}\n\n# Check whether the device is vulnerable.\nif (get_kb_item(\"www/xerox_workcentre\"))\n{\n model = get_kb_item_or_exit(\"www/xerox_workcentre/model\");\n ssw = get_kb_item_or_exit(\"www/xerox_workcentre/ssw\");\n if (ssw && \".\" >< ssw) ssw = strstr(ssw, \".\") - \".\";\n ess = get_kb_item_or_exit(\"www/xerox_workcentre/ess\");\n\n # No need to check further if ESS has \".P38\" since that\n # indicates the patch has already been applied.\n if (ess && ess =~ \"\\.P38\") audit(AUDIT_HOST_NOT, \"affected\");\n\n # Test model number and software version against those in Xerox's security bulletin.\n if (\n (\n # nb: models 232/238/245/255/265/275 with SSW in [*.27.24.000, *.60.22.050).\n model =~ \"^(Pro )?2(3[28]|[4-7]5)($|[^0-9])\" &&\n # nb: the leading part of the System SW has already been removed.\n ver_inrange(ver:ssw, low:\"27.24.000\", high:\"60.22.049\")\n ) ||\n (\n # nb: models 7655/7665/7675 with ESS in [040.032.000, 040.033.53110).\n model =~ \"^76[5-7]5($|[^0-9])\" &&\n ver_inrange(ver:ess, low:\"040.032.0\", high:\"040.033.53109\")\n ) ||\n (\n # nb: models 5632/5638/5645/5655/5665/5675/5687 with ESS in [050.060.50730, 050.060.50980].\n model =~ \"^56(32|38|[4-7]5|87)($|[^0-9])\" &&\n ver_inrange(ver:ess, low:\"050.060.50730\", high:\"050.060.50980\")\n )\n )\n security_hole(0);\n exit(0);\n}\naudit(AUDIT_HOST_NOT, \"affected\");\n", "title": "Xerox WorkCentre Web Server Unspecified Command Injection (XRX09-002)", "type": "nessus", "viewCount": 0}, "differentElements": ["cvss"], "edition": 4, "lastseen": "2018-08-10T17:04:06"}, {"bulletin": {"bulletinFamily": "scanner", "cvelist": ["CVE-2009-1656"], "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "description": "According to its model number and software version, the remote host is a Xerox WorkCentre device that reportedly has an as-yet unspecified command injection vulnerability in its web server. A remote attacker may be able to leverage this issue to execute arbitrary code via carefully crafted inputs on an affected web page.", "edition": 1, "enchantments": {}, "hash": "9151a75b2531deb2fb9af27a8d80fc5174b4cfbb4e42a624ac3e1c9972769e82", "hashmap": [{"hash": "5e1828202de60d52063472231e7cc46b", "key": "modified"}, {"hash": "766926685ff577e4ef110a7811ddb660", "key": "sourceData"}, {"hash": "811a7e2ea9db3f4d4cf3d86d52a67adc", "key": "description"}, {"hash": "f988dc6e0b4d047c838adcca890ea132", "key": "naslFamily"}, {"hash": "9cf00d658b687f030ebe173a0528c567", "key": "reporter"}, {"hash": "81fb6c016928202483b4a6f2f49c7469", "key": "references"}, {"hash": "2bdabeb49c44761f9565717ab0e38165", "key": "cvss"}, {"hash": "b9b993f4d1b942206120102f00b759fe", "key": "pluginID"}, {"hash": "2c227719cc867849af8d0d90406ee414", "key": "href"}, {"hash": "566a5975ebcf2dc7de8337df2e9f9052", "key": "published"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "5e0bd03bec244039678f2b955a2595aa", "key": "type"}, {"hash": "f22351df383e5b6ccfe11fc31d2da8fa", "key": "title"}, {"hash": "163d6748503b652293ace9b05fe361ca", "key": "cvelist"}], "history": [], "href": "https://www.tenable.com/plugins/index.php?view=single&id=38790", "id": "XEROX_XRX09_002.NASL", "lastseen": "2016-09-26T17:23:58", "modified": "2013-11-05T00:00:00", "naslFamily": "Misc.", "objectVersion": "1.2", "pluginID": "38790", "published": "2009-05-15T00:00:00", "references": ["http://www.xerox.com/downloads/usa/en/c/cert_XRX09-02_v1.0.pdf"], "reporter": "Tenable", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(38790);\n script_version(\"$Revision: 1.10 $\");\n script_cvs_date(\"$Date: 2013/11/05 20:37:10 $\");\n\n script_cve_id(\"CVE-2009-1656\");\n script_bugtraq_id(34984);\n script_osvdb_id(54457);\n script_xref(name:\"Secunia\", value:\"35101\");\n\n script_name(english:\"Xerox WorkCentre Web Server Unspecified Command Injection (XRX09-002)\");\n script_summary(english:\"Checks Net Controller Software version of Xerox WorkCentre devices\");\n\n script_set_attribute(\n attribute:\"synopsis\",\n value:\n\"The remote multi-function device is affected by a command injection\nvulnerability.\"\n );\n script_set_attribute(\n attribute:\"description\",\n value:\n\"According to its model number and software version, the remote host\nis a Xerox WorkCentre device that reportedly has an as-yet unspecified\ncommand injection vulnerability in its web server. A remote attacker\nmay be able to leverage this issue to execute arbitrary code via\ncarefully crafted inputs on an affected web page.\"\n );\n script_set_attribute(attribute:\"see_also\", value:\"http://www.xerox.com/downloads/usa/en/c/cert_XRX09-02_v1.0.pdf\");\n script_set_attribute(\n attribute:\"solution\",\n value:\n\"Apply the P38 patch as described in the Xerox security bulletin\nreferenced in the included URL.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:F/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2009/05/15\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2009/05/15\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2009/05/15\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"remote\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/h:xerox:workcentre\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Misc.\");\n\n script_copyright(english:\"This script is Copyright (C) 2009-2013 Tenable Network Security, Inc.\");\n\n script_dependencies(\"xerox_workcentre_detect.nasl\");\n script_require_keys(\"www/xerox_workcentre\");\n\n exit(0);\n}\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\n\n# This function returns TRUE if the version string ver lies in\n# the range [low, high].\nfunction ver_inrange(ver, low, high)\n{\n local_var ver_parts, low_parts, high_parts, i, p, low_p, high_p;\n\n if (isnull(ver) || isnull(low) || isnull(high)) return FALSE;\n\n # Split levels into parts.\n ver_parts = split(ver, sep:\".\", keep:0);\n low_parts = split(low, sep:\".\", keep:0);\n high_parts = split(high, sep:\".\", keep:0);\n\n # Compare each part.\n i = 0;\n while (ver_parts[i] != NULL)\n {\n p = int(ver_parts[i]);\n low_p = int(low_parts[i]);\n if (low_p == NULL) low_p = 0;\n high_p = int(high_parts[i]);\n if (high_p == NULL) high_p = 0;\n\n if (p > low_p && p < high_p) return TRUE;\n if (p < low_p || p > high_p) return FALSE;\n ++i;\n }\n return TRUE;\n}\n\n# Check whether the device is vulnerable.\nif (get_kb_item(\"www/xerox_workcentre\"))\n{\n model = get_kb_item_or_exit(\"www/xerox_workcentre/model\");\n ssw = get_kb_item_or_exit(\"www/xerox_workcentre/ssw\");\n if (ssw && \".\" >< ssw) ssw = strstr(ssw, \".\") - \".\";\n ess = get_kb_item_or_exit(\"www/xerox_workcentre/ess\");\n\n # No need to check further if ESS has \".P38\" since that\n # indicates the patch has already been applied.\n if (ess && ess =~ \"\\.P38\") audit(AUDIT_HOST_NOT, \"affected\");\n\n # Test model number and software version against those in Xerox's security bulletin.\n if (\n (\n # nb: models 232/238/245/255/265/275 with SSW in [*.27.24.000, *.60.22.050).\n model =~ \"^(Pro )?2(3[28]|[4-7]5)($|[^0-9])\" &&\n # nb: the leading part of the System SW has already been removed.\n ver_inrange(ver:ssw, low:\"27.24.000\", high:\"60.22.049\")\n ) ||\n (\n # nb: models 7655/7665/7675 with ESS in [040.032.000, 040.033.53110).\n model =~ \"^76[5-7]5($|[^0-9])\" &&\n ver_inrange(ver:ess, low:\"040.032.0\", high:\"040.033.53109\")\n ) ||\n (\n # nb: models 5632/5638/5645/5655/5665/5675/5687 with ESS in [050.060.50730, 050.060.50980].\n model =~ \"^56(32|38|[4-7]5|87)($|[^0-9])\" &&\n ver_inrange(ver:ess, low:\"050.060.50730\", high:\"050.060.50980\")\n )\n )\n security_hole(0);\n exit(0);\n}\naudit(AUDIT_HOST_NOT, \"affected\");\n", "title": "Xerox WorkCentre Web Server Unspecified Command Injection (XRX09-002)", "type": "nessus", "viewCount": 0}, "differentElements": ["modified", "sourceData"], "edition": 1, "lastseen": "2016-09-26T17:23:58"}, {"bulletin": {"bulletinFamily": "scanner", "cpe": ["cpe:/h:xerox:workcentre"], "cvelist": ["CVE-2009-1656"], "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "description": "According to its model number and software version, the remote host is a Xerox WorkCentre device that reportedly has an as-yet unspecified command injection vulnerability in its web server. A remote attacker may be able to leverage this issue to execute arbitrary code via carefully crafted inputs on an affected web page.", "edition": 6, "enchantments": {"score": {"value": 7.5, "vector": "NONE"}}, "hash": "f67631833ce00e04dc28f112f1b472c1b453b0bee7cf54dbd28472cdefb81a92", "hashmap": [{"hash": "b08db2ae55a278b3b88004ac380a56ce", "key": "cpe"}, {"hash": "811a7e2ea9db3f4d4cf3d86d52a67adc", "key": "description"}, {"hash": "f988dc6e0b4d047c838adcca890ea132", "key": "naslFamily"}, {"hash": "9cf00d658b687f030ebe173a0528c567", "key": "reporter"}, {"hash": "81fb6c016928202483b4a6f2f49c7469", "key": "references"}, {"hash": "2bdabeb49c44761f9565717ab0e38165", "key": "cvss"}, {"hash": "b9b993f4d1b942206120102f00b759fe", "key": "pluginID"}, {"hash": "2c227719cc867849af8d0d90406ee414", "key": "href"}, {"hash": "02df8854c0afbb2dcfc6383b3215a9b8", "key": "sourceData"}, {"hash": "566a5975ebcf2dc7de8337df2e9f9052", "key": "published"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "5e0bd03bec244039678f2b955a2595aa", "key": "type"}, {"hash": "f22351df383e5b6ccfe11fc31d2da8fa", "key": "title"}, {"hash": "f310bf9180512c8bb6be0b0fd0fd4f6f", "key": "modified"}, {"hash": "163d6748503b652293ace9b05fe361ca", "key": "cvelist"}], "history": [], "href": "https://www.tenable.com/plugins/index.php?view=single&id=38790", "id": "XEROX_XRX09_002.NASL", "lastseen": "2018-09-01T23:40:05", "modified": "2018-08-07T00:00:00", "naslFamily": "Misc.", "objectVersion": "1.3", "pluginID": "38790", "published": "2009-05-15T00:00:00", "references": ["http://www.xerox.com/downloads/usa/en/c/cert_XRX09-02_v1.0.pdf"], "reporter": "Tenable", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(38790);\n script_version(\"1.12\");\n script_cvs_date(\"Date: 2018/08/07 16:46:51\");\n\n script_cve_id(\"CVE-2009-1656\");\n script_bugtraq_id(34984);\n script_xref(name:\"Secunia\", value:\"35101\");\n\n script_name(english:\"Xerox WorkCentre Web Server Unspecified Command Injection (XRX09-002)\");\n script_summary(english:\"Checks Net Controller Software version of Xerox WorkCentre devices\");\n\n script_set_attribute(\n attribute:\"synopsis\",\n value:\n\"The remote multi-function device is affected by a command injection\nvulnerability.\"\n );\n script_set_attribute(\n attribute:\"description\",\n value:\n\"According to its model number and software version, the remote host\nis a Xerox WorkCentre device that reportedly has an as-yet unspecified\ncommand injection vulnerability in its web server. A remote attacker\nmay be able to leverage this issue to execute arbitrary code via\ncarefully crafted inputs on an affected web page.\"\n );\n script_set_attribute(attribute:\"see_also\", value:\"http://www.xerox.com/downloads/usa/en/c/cert_XRX09-02_v1.0.pdf\");\n script_set_attribute(\n attribute:\"solution\",\n value:\n\"Apply the P38 patch as described in the Xerox security bulletin\nreferenced in the included URL.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2009/05/15\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2009/05/15\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2009/05/15\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"remote\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/h:xerox:workcentre\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Misc.\");\n\n script_copyright(english:\"This script is Copyright (C) 2009-2018 Tenable Network Security, Inc.\");\n\n script_dependencies(\"xerox_workcentre_detect.nasl\");\n script_require_keys(\"www/xerox_workcentre\");\n\n exit(0);\n}\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\n\n# This function returns TRUE if the version string ver lies in\n# the range [low, high].\nfunction ver_inrange(ver, low, high)\n{\n local_var ver_parts, low_parts, high_parts, i, p, low_p, high_p;\n\n if (isnull(ver) || isnull(low) || isnull(high)) return FALSE;\n\n # Split levels into parts.\n ver_parts = split(ver, sep:\".\", keep:0);\n low_parts = split(low, sep:\".\", keep:0);\n high_parts = split(high, sep:\".\", keep:0);\n\n # Compare each part.\n i = 0;\n while (ver_parts[i] != NULL)\n {\n p = int(ver_parts[i]);\n low_p = int(low_parts[i]);\n if (low_p == NULL) low_p = 0;\n high_p = int(high_parts[i]);\n if (high_p == NULL) high_p = 0;\n\n if (p > low_p && p < high_p) return TRUE;\n if (p < low_p || p > high_p) return FALSE;\n ++i;\n }\n return TRUE;\n}\n\n# Check whether the device is vulnerable.\nif (get_kb_item(\"www/xerox_workcentre\"))\n{\n model = get_kb_item_or_exit(\"www/xerox_workcentre/model\");\n ssw = get_kb_item_or_exit(\"www/xerox_workcentre/ssw\");\n if (ssw && \".\" >< ssw) ssw = strstr(ssw, \".\") - \".\";\n ess = get_kb_item_or_exit(\"www/xerox_workcentre/ess\");\n\n # No need to check further if ESS has \".P38\" since that\n # indicates the patch has already been applied.\n if (ess && ess =~ \"\\.P38\") audit(AUDIT_HOST_NOT, \"affected\");\n\n # Test model number and software version against those in Xerox's security bulletin.\n if (\n (\n # nb: models 232/238/245/255/265/275 with SSW in [*.27.24.000, *.60.22.050).\n model =~ \"^(Pro )?2(3[28]|[4-7]5)($|[^0-9])\" &&\n # nb: the leading part of the System SW has already been removed.\n ver_inrange(ver:ssw, low:\"27.24.000\", high:\"60.22.049\")\n ) ||\n (\n # nb: models 7655/7665/7675 with ESS in [040.032.000, 040.033.53110).\n model =~ \"^76[5-7]5($|[^0-9])\" &&\n ver_inrange(ver:ess, low:\"040.032.0\", high:\"040.033.53109\")\n ) ||\n (\n # nb: models 5632/5638/5645/5655/5665/5675/5687 with ESS in [050.060.50730, 050.060.50980].\n model =~ \"^56(32|38|[4-7]5|87)($|[^0-9])\" &&\n ver_inrange(ver:ess, low:\"050.060.50730\", high:\"050.060.50980\")\n )\n )\n security_hole(0);\n exit(0);\n}\naudit(AUDIT_HOST_NOT, \"affected\");\n", "title": "Xerox WorkCentre Web Server Unspecified Command Injection (XRX09-002)", "type": "nessus", "viewCount": 2}, "differentElements": ["references", "modified", "sourceData"], "edition": 6, "lastseen": "2018-09-01T23:40:05"}, {"bulletin": {"bulletinFamily": "scanner", "cpe": ["cpe:/h:xerox:workcentre"], "cvelist": ["CVE-2009-1656"], "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "description": "According to its model number and software version, the remote host is a Xerox WorkCentre device that reportedly has an as-yet unspecified command injection vulnerability in its web server. A remote attacker may be able to leverage this issue to execute arbitrary code via carefully crafted inputs on an affected web page.", "edition": 3, "enchantments": {"score": {"value": 7.5, "vector": "NONE"}}, "hash": "f400a7915af16725d02f61e79c4b877f4fd209bd71545e6305c8c5ae077d68de", "hashmap": [{"hash": "c57caa13a9dffde9eebc944d367434c5", "key": "modified"}, {"hash": "b08db2ae55a278b3b88004ac380a56ce", "key": "cpe"}, {"hash": "811a7e2ea9db3f4d4cf3d86d52a67adc", "key": "description"}, {"hash": "f988dc6e0b4d047c838adcca890ea132", "key": "naslFamily"}, {"hash": "9cf00d658b687f030ebe173a0528c567", "key": "reporter"}, {"hash": "81fb6c016928202483b4a6f2f49c7469", "key": "references"}, {"hash": "2bdabeb49c44761f9565717ab0e38165", "key": "cvss"}, {"hash": "b9b993f4d1b942206120102f00b759fe", "key": "pluginID"}, {"hash": "2c227719cc867849af8d0d90406ee414", "key": "href"}, {"hash": "448f40ccffa716868c97f9aaf849d4f1", "key": "sourceData"}, {"hash": "566a5975ebcf2dc7de8337df2e9f9052", "key": "published"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "5e0bd03bec244039678f2b955a2595aa", "key": "type"}, {"hash": "f22351df383e5b6ccfe11fc31d2da8fa", "key": "title"}, {"hash": "163d6748503b652293ace9b05fe361ca", "key": "cvelist"}], "history": [], "href": "https://www.tenable.com/plugins/index.php?view=single&id=38790", "id": "XEROX_XRX09_002.NASL", "lastseen": "2017-10-29T13:36:03", "modified": "2017-08-16T00:00:00", "naslFamily": "Misc.", "objectVersion": "1.3", "pluginID": "38790", "published": "2009-05-15T00:00:00", "references": ["http://www.xerox.com/downloads/usa/en/c/cert_XRX09-02_v1.0.pdf"], "reporter": "Tenable", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(38790);\n script_version(\"$Revision: 1.11 $\");\n script_cvs_date(\"$Date: 2017/08/16 14:26:36 $\");\n\n script_cve_id(\"CVE-2009-1656\");\n script_bugtraq_id(34984);\n script_osvdb_id(54457);\n script_xref(name:\"Secunia\", value:\"35101\");\n\n script_name(english:\"Xerox WorkCentre Web Server Unspecified Command Injection (XRX09-002)\");\n script_summary(english:\"Checks Net Controller Software version of Xerox WorkCentre devices\");\n\n script_set_attribute(\n attribute:\"synopsis\",\n value:\n\"The remote multi-function device is affected by a command injection\nvulnerability.\"\n );\n script_set_attribute(\n attribute:\"description\",\n value:\n\"According to its model number and software version, the remote host\nis a Xerox WorkCentre device that reportedly has an as-yet unspecified\ncommand injection vulnerability in its web server. A remote attacker\nmay be able to leverage this issue to execute arbitrary code via\ncarefully crafted inputs on an affected web page.\"\n );\n script_set_attribute(attribute:\"see_also\", value:\"http://www.xerox.com/downloads/usa/en/c/cert_XRX09-02_v1.0.pdf\");\n script_set_attribute(\n attribute:\"solution\",\n value:\n\"Apply the P38 patch as described in the Xerox security bulletin\nreferenced in the included URL.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:ND/RL:ND/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2009/05/15\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2009/05/15\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2009/05/15\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"remote\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/h:xerox:workcentre\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Misc.\");\n\n script_copyright(english:\"This script is Copyright (C) 2009-2017 Tenable Network Security, Inc.\");\n\n script_dependencies(\"xerox_workcentre_detect.nasl\");\n script_require_keys(\"www/xerox_workcentre\");\n\n exit(0);\n}\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\n\n# This function returns TRUE if the version string ver lies in\n# the range [low, high].\nfunction ver_inrange(ver, low, high)\n{\n local_var ver_parts, low_parts, high_parts, i, p, low_p, high_p;\n\n if (isnull(ver) || isnull(low) || isnull(high)) return FALSE;\n\n # Split levels into parts.\n ver_parts = split(ver, sep:\".\", keep:0);\n low_parts = split(low, sep:\".\", keep:0);\n high_parts = split(high, sep:\".\", keep:0);\n\n # Compare each part.\n i = 0;\n while (ver_parts[i] != NULL)\n {\n p = int(ver_parts[i]);\n low_p = int(low_parts[i]);\n if (low_p == NULL) low_p = 0;\n high_p = int(high_parts[i]);\n if (high_p == NULL) high_p = 0;\n\n if (p > low_p && p < high_p) return TRUE;\n if (p < low_p || p > high_p) return FALSE;\n ++i;\n }\n return TRUE;\n}\n\n# Check whether the device is vulnerable.\nif (get_kb_item(\"www/xerox_workcentre\"))\n{\n model = get_kb_item_or_exit(\"www/xerox_workcentre/model\");\n ssw = get_kb_item_or_exit(\"www/xerox_workcentre/ssw\");\n if (ssw && \".\" >< ssw) ssw = strstr(ssw, \".\") - \".\";\n ess = get_kb_item_or_exit(\"www/xerox_workcentre/ess\");\n\n # No need to check further if ESS has \".P38\" since that\n # indicates the patch has already been applied.\n if (ess && ess =~ \"\\.P38\") audit(AUDIT_HOST_NOT, \"affected\");\n\n # Test model number and software version against those in Xerox's security bulletin.\n if (\n (\n # nb: models 232/238/245/255/265/275 with SSW in [*.27.24.000, *.60.22.050).\n model =~ \"^(Pro )?2(3[28]|[4-7]5)($|[^0-9])\" &&\n # nb: the leading part of the System SW has already been removed.\n ver_inrange(ver:ssw, low:\"27.24.000\", high:\"60.22.049\")\n ) ||\n (\n # nb: models 7655/7665/7675 with ESS in [040.032.000, 040.033.53110).\n model =~ \"^76[5-7]5($|[^0-9])\" &&\n ver_inrange(ver:ess, low:\"040.032.0\", high:\"040.033.53109\")\n ) ||\n (\n # nb: models 5632/5638/5645/5655/5665/5675/5687 with ESS in [050.060.50730, 050.060.50980].\n model =~ \"^56(32|38|[4-7]5|87)($|[^0-9])\" &&\n ver_inrange(ver:ess, low:\"050.060.50730\", high:\"050.060.50980\")\n )\n )\n security_hole(0);\n exit(0);\n}\naudit(AUDIT_HOST_NOT, \"affected\");\n", "title": "Xerox WorkCentre Web Server Unspecified Command Injection (XRX09-002)", "type": "nessus", "viewCount": 0}, "differentElements": ["modified", "sourceData"], "edition": 3, "lastseen": "2017-10-29T13:36:03"}, {"bulletin": {"bulletinFamily": "scanner", "cpe": ["cpe:/h:xerox:workcentre"], "cvelist": ["CVE-2009-1656"], "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "description": "According to its model number and software version, the remote host\nis a Xerox WorkCentre device that reportedly has an as-yet unspecified\ncommand injection vulnerability in its web server. A remote attacker\nmay be able to leverage this issue to execute arbitrary code via\ncarefully crafted inputs on an affected web page.", "edition": 8, "enchantments": {"dependencies": {"modified": "2019-01-16T20:09:18", "references": [{"idList": ["CVE-2009-1656"], "type": "cve"}]}, "score": {"value": 7.5, "vector": "NONE"}}, "hash": "f01cb901e904c2a2e741631875e47c6094240ca00fbca664f38c2e20a968d017", "hashmap": [{"hash": "b08db2ae55a278b3b88004ac380a56ce", "key": "cpe"}, {"hash": "211e10502af42974efea98b5c823badb", "key": "references"}, {"hash": "f988dc6e0b4d047c838adcca890ea132", "key": "naslFamily"}, {"hash": "9cf00d658b687f030ebe173a0528c567", "key": "reporter"}, {"hash": "bb4a1be3ce1465511fcda7847a15a93f", "key": "description"}, {"hash": "015cb78ce50d3bd4e2fbe18f25603329", "key": "modified"}, {"hash": "2bdabeb49c44761f9565717ab0e38165", "key": "cvss"}, {"hash": "b9b993f4d1b942206120102f00b759fe", "key": "pluginID"}, {"hash": "2c227719cc867849af8d0d90406ee414", "key": "href"}, {"hash": "566a5975ebcf2dc7de8337df2e9f9052", "key": "published"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "5e0bd03bec244039678f2b955a2595aa", "key": "type"}, {"hash": "f22351df383e5b6ccfe11fc31d2da8fa", "key": "title"}, {"hash": "ae58e31772bd5730f2f5f6fab1567697", "key": "sourceData"}, {"hash": "163d6748503b652293ace9b05fe361ca", "key": "cvelist"}], "history": [], "href": "https://www.tenable.com/plugins/index.php?view=single&id=38790", "id": "XEROX_XRX09_002.NASL", "lastseen": "2019-01-16T20:09:18", "modified": "2018-11-15T00:00:00", "naslFamily": "Misc.", "objectVersion": "1.3", "pluginID": "38790", "published": "2009-05-15T00:00:00", "references": ["https://www.xerox.com/downloads/usa/en/c/cert_XRX09-02_v1.0.pdf"], "reporter": "Tenable", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(38790);\n script_version(\"1.13\");\n script_cvs_date(\"Date: 2018/11/15 20:50:24\");\n\n script_cve_id(\"CVE-2009-1656\");\n script_bugtraq_id(34984);\n script_xref(name:\"Secunia\", value:\"35101\");\n\n script_name(english:\"Xerox WorkCentre Web Server Unspecified Command Injection (XRX09-002)\");\n script_summary(english:\"Checks Net Controller Software version of Xerox WorkCentre devices\");\n\n script_set_attribute(\n attribute:\"synopsis\",\n value:\n\"The remote multi-function device is affected by a command injection\nvulnerability.\"\n );\n script_set_attribute(\n attribute:\"description\",\n value:\n\"According to its model number and software version, the remote host\nis a Xerox WorkCentre device that reportedly has an as-yet unspecified\ncommand injection vulnerability in its web server. A remote attacker\nmay be able to leverage this issue to execute arbitrary code via\ncarefully crafted inputs on an affected web page.\"\n );\n script_set_attribute(attribute:\"see_also\", value:\"https://www.xerox.com/downloads/usa/en/c/cert_XRX09-02_v1.0.pdf\");\n script_set_attribute(\n attribute:\"solution\",\n value:\n\"Apply the P38 patch as described in the Xerox security bulletin\nreferenced in the included URL.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2009/05/15\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2009/05/15\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2009/05/15\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"remote\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/h:xerox:workcentre\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Misc.\");\n\n script_copyright(english:\"This script is Copyright (C) 2009-2018 Tenable Network Security, Inc.\");\n\n script_dependencies(\"xerox_workcentre_detect.nasl\");\n script_require_keys(\"www/xerox_workcentre\");\n\n exit(0);\n}\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\n\n# This function returns TRUE if the version string ver lies in\n# the range [low, high].\nfunction ver_inrange(ver, low, high)\n{\n local_var ver_parts, low_parts, high_parts, i, p, low_p, high_p;\n\n if (isnull(ver) || isnull(low) || isnull(high)) return FALSE;\n\n # Split levels into parts.\n ver_parts = split(ver, sep:\".\", keep:0);\n low_parts = split(low, sep:\".\", keep:0);\n high_parts = split(high, sep:\".\", keep:0);\n\n # Compare each part.\n i = 0;\n while (ver_parts[i] != NULL)\n {\n p = int(ver_parts[i]);\n low_p = int(low_parts[i]);\n if (low_p == NULL) low_p = 0;\n high_p = int(high_parts[i]);\n if (high_p == NULL) high_p = 0;\n\n if (p > low_p && p < high_p) return TRUE;\n if (p < low_p || p > high_p) return FALSE;\n ++i;\n }\n return TRUE;\n}\n\n# Check whether the device is vulnerable.\nif (get_kb_item(\"www/xerox_workcentre\"))\n{\n model = get_kb_item_or_exit(\"www/xerox_workcentre/model\");\n ssw = get_kb_item_or_exit(\"www/xerox_workcentre/ssw\");\n if (ssw && \".\" >< ssw) ssw = strstr(ssw, \".\") - \".\";\n ess = get_kb_item_or_exit(\"www/xerox_workcentre/ess\");\n\n # No need to check further if ESS has \".P38\" since that\n # indicates the patch has already been applied.\n if (ess && ess =~ \"\\.P38\") audit(AUDIT_HOST_NOT, \"affected\");\n\n # Test model number and software version against those in Xerox's security bulletin.\n if (\n (\n # nb: models 232/238/245/255/265/275 with SSW in [*.27.24.000, *.60.22.050).\n model =~ \"^(Pro )?2(3[28]|[4-7]5)($|[^0-9])\" &&\n # nb: the leading part of the System SW has already been removed.\n ver_inrange(ver:ssw, low:\"27.24.000\", high:\"60.22.049\")\n ) ||\n (\n # nb: models 7655/7665/7675 with ESS in [040.032.000, 040.033.53110).\n model =~ \"^76[5-7]5($|[^0-9])\" &&\n ver_inrange(ver:ess, low:\"040.032.0\", high:\"040.033.53109\")\n ) ||\n (\n # nb: models 5632/5638/5645/5655/5665/5675/5687 with ESS in [050.060.50730, 050.060.50980].\n model =~ \"^56(32|38|[4-7]5|87)($|[^0-9])\" &&\n ver_inrange(ver:ess, low:\"050.060.50730\", high:\"050.060.50980\")\n )\n )\n security_hole(0);\n exit(0);\n}\naudit(AUDIT_HOST_NOT, \"affected\");\n", "title": "Xerox WorkCentre Web Server Unspecified Command Injection (XRX09-002)", "type": "nessus", "viewCount": 2}, "differentElements": ["description"], "edition": 8, "lastseen": "2019-01-16T20:09:18"}, {"bulletin": {"bulletinFamily": "scanner", "cpe": [], "cvelist": ["CVE-2009-1656"], "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "description": "According to its model number and software version, the remote host is a Xerox WorkCentre device that reportedly has an as-yet unspecified command injection vulnerability in its web server. A remote attacker may be able to leverage this issue to execute arbitrary code via carefully crafted inputs on an affected web page.", "edition": 2, "enchantments": {}, "hash": "551f3f34f24d9138aa3795617102b9073d6f758766970bfdf7bfa7386a788bef", "hashmap": [{"hash": "c57caa13a9dffde9eebc944d367434c5", "key": "modified"}, {"hash": "811a7e2ea9db3f4d4cf3d86d52a67adc", "key": "description"}, {"hash": "f988dc6e0b4d047c838adcca890ea132", "key": "naslFamily"}, {"hash": "9cf00d658b687f030ebe173a0528c567", "key": "reporter"}, {"hash": "81fb6c016928202483b4a6f2f49c7469", "key": "references"}, {"hash": "2bdabeb49c44761f9565717ab0e38165", "key": "cvss"}, {"hash": "b9b993f4d1b942206120102f00b759fe", "key": "pluginID"}, {"hash": "2c227719cc867849af8d0d90406ee414", "key": "href"}, {"hash": "448f40ccffa716868c97f9aaf849d4f1", "key": "sourceData"}, {"hash": "566a5975ebcf2dc7de8337df2e9f9052", "key": "published"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "5e0bd03bec244039678f2b955a2595aa", "key": "type"}, {"hash": "f22351df383e5b6ccfe11fc31d2da8fa", "key": "title"}, {"hash": "163d6748503b652293ace9b05fe361ca", "key": "cvelist"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe"}], "history": [], "href": "https://www.tenable.com/plugins/index.php?view=single&id=38790", "id": "XEROX_XRX09_002.NASL", "lastseen": "2017-08-17T00:04:08", "modified": "2017-08-16T00:00:00", "naslFamily": "Misc.", "objectVersion": "1.3", "pluginID": "38790", "published": "2009-05-15T00:00:00", "references": ["http://www.xerox.com/downloads/usa/en/c/cert_XRX09-02_v1.0.pdf"], "reporter": "Tenable", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(38790);\n script_version(\"$Revision: 1.11 $\");\n script_cvs_date(\"$Date: 2017/08/16 14:26:36 $\");\n\n script_cve_id(\"CVE-2009-1656\");\n script_bugtraq_id(34984);\n script_osvdb_id(54457);\n script_xref(name:\"Secunia\", value:\"35101\");\n\n script_name(english:\"Xerox WorkCentre Web Server Unspecified Command Injection (XRX09-002)\");\n script_summary(english:\"Checks Net Controller Software version of Xerox WorkCentre devices\");\n\n script_set_attribute(\n attribute:\"synopsis\",\n value:\n\"The remote multi-function device is affected by a command injection\nvulnerability.\"\n );\n script_set_attribute(\n attribute:\"description\",\n value:\n\"According to its model number and software version, the remote host\nis a Xerox WorkCentre device that reportedly has an as-yet unspecified\ncommand injection vulnerability in its web server. A remote attacker\nmay be able to leverage this issue to execute arbitrary code via\ncarefully crafted inputs on an affected web page.\"\n );\n script_set_attribute(attribute:\"see_also\", value:\"http://www.xerox.com/downloads/usa/en/c/cert_XRX09-02_v1.0.pdf\");\n script_set_attribute(\n attribute:\"solution\",\n value:\n\"Apply the P38 patch as described in the Xerox security bulletin\nreferenced in the included URL.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:ND/RL:ND/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2009/05/15\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2009/05/15\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2009/05/15\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"remote\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/h:xerox:workcentre\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Misc.\");\n\n script_copyright(english:\"This script is Copyright (C) 2009-2017 Tenable Network Security, Inc.\");\n\n script_dependencies(\"xerox_workcentre_detect.nasl\");\n script_require_keys(\"www/xerox_workcentre\");\n\n exit(0);\n}\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\n\n# This function returns TRUE if the version string ver lies in\n# the range [low, high].\nfunction ver_inrange(ver, low, high)\n{\n local_var ver_parts, low_parts, high_parts, i, p, low_p, high_p;\n\n if (isnull(ver) || isnull(low) || isnull(high)) return FALSE;\n\n # Split levels into parts.\n ver_parts = split(ver, sep:\".\", keep:0);\n low_parts = split(low, sep:\".\", keep:0);\n high_parts = split(high, sep:\".\", keep:0);\n\n # Compare each part.\n i = 0;\n while (ver_parts[i] != NULL)\n {\n p = int(ver_parts[i]);\n low_p = int(low_parts[i]);\n if (low_p == NULL) low_p = 0;\n high_p = int(high_parts[i]);\n if (high_p == NULL) high_p = 0;\n\n if (p > low_p && p < high_p) return TRUE;\n if (p < low_p || p > high_p) return FALSE;\n ++i;\n }\n return TRUE;\n}\n\n# Check whether the device is vulnerable.\nif (get_kb_item(\"www/xerox_workcentre\"))\n{\n model = get_kb_item_or_exit(\"www/xerox_workcentre/model\");\n ssw = get_kb_item_or_exit(\"www/xerox_workcentre/ssw\");\n if (ssw && \".\" >< ssw) ssw = strstr(ssw, \".\") - \".\";\n ess = get_kb_item_or_exit(\"www/xerox_workcentre/ess\");\n\n # No need to check further if ESS has \".P38\" since that\n # indicates the patch has already been applied.\n if (ess && ess =~ \"\\.P38\") audit(AUDIT_HOST_NOT, \"affected\");\n\n # Test model number and software version against those in Xerox's security bulletin.\n if (\n (\n # nb: models 232/238/245/255/265/275 with SSW in [*.27.24.000, *.60.22.050).\n model =~ \"^(Pro )?2(3[28]|[4-7]5)($|[^0-9])\" &&\n # nb: the leading part of the System SW has already been removed.\n ver_inrange(ver:ssw, low:\"27.24.000\", high:\"60.22.049\")\n ) ||\n (\n # nb: models 7655/7665/7675 with ESS in [040.032.000, 040.033.53110).\n model =~ \"^76[5-7]5($|[^0-9])\" &&\n ver_inrange(ver:ess, low:\"040.032.0\", high:\"040.033.53109\")\n ) ||\n (\n # nb: models 5632/5638/5645/5655/5665/5675/5687 with ESS in [050.060.50730, 050.060.50980].\n model =~ \"^56(32|38|[4-7]5|87)($|[^0-9])\" &&\n ver_inrange(ver:ess, low:\"050.060.50730\", high:\"050.060.50980\")\n )\n )\n security_hole(0);\n exit(0);\n}\naudit(AUDIT_HOST_NOT, \"affected\");\n", "title": "Xerox WorkCentre Web Server Unspecified Command Injection (XRX09-002)", "type": "nessus", "viewCount": 0}, "differentElements": ["cpe"], "edition": 2, "lastseen": "2017-08-17T00:04:08"}, {"bulletin": {"bulletinFamily": "scanner", "cpe": ["cpe:/h:xerox:workcentre"], "cvelist": ["CVE-2009-1656"], "cvss": {"score": 0.0, "vector": "NONE"}, "description": "According to its model number and software version, the remote host is a Xerox WorkCentre device that reportedly has an as-yet unspecified command injection vulnerability in its web server. A remote attacker may be able to leverage this issue to execute arbitrary code via carefully crafted inputs on an affected web page.", "edition": 5, "enchantments": {"score": {"value": 7.5, "vector": "NONE"}}, "hash": "73facc565b10963a36bfda9eed6d137090f485df14e0fd9d5ef9ffea926b16e7", "hashmap": [{"hash": "b08db2ae55a278b3b88004ac380a56ce", "key": "cpe"}, {"hash": "811a7e2ea9db3f4d4cf3d86d52a67adc", "key": "description"}, {"hash": "f988dc6e0b4d047c838adcca890ea132", "key": "naslFamily"}, {"hash": "9cf00d658b687f030ebe173a0528c567", "key": "reporter"}, {"hash": "81fb6c016928202483b4a6f2f49c7469", "key": "references"}, {"hash": "b9b993f4d1b942206120102f00b759fe", "key": "pluginID"}, {"hash": "2c227719cc867849af8d0d90406ee414", "key": "href"}, {"hash": "02df8854c0afbb2dcfc6383b3215a9b8", "key": "sourceData"}, {"hash": "8cd4821cb504d25572038ed182587d85", "key": "cvss"}, {"hash": "566a5975ebcf2dc7de8337df2e9f9052", "key": "published"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "5e0bd03bec244039678f2b955a2595aa", "key": "type"}, {"hash": "f22351df383e5b6ccfe11fc31d2da8fa", "key": "title"}, {"hash": "f310bf9180512c8bb6be0b0fd0fd4f6f", "key": "modified"}, {"hash": "163d6748503b652293ace9b05fe361ca", "key": "cvelist"}], "history": [], "href": "https://www.tenable.com/plugins/index.php?view=single&id=38790", "id": "XEROX_XRX09_002.NASL", "lastseen": "2018-08-30T19:35:35", "modified": "2018-08-07T00:00:00", "naslFamily": "Misc.", "objectVersion": "1.3", "pluginID": "38790", "published": "2009-05-15T00:00:00", "references": ["http://www.xerox.com/downloads/usa/en/c/cert_XRX09-02_v1.0.pdf"], "reporter": "Tenable", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(38790);\n script_version(\"1.12\");\n script_cvs_date(\"Date: 2018/08/07 16:46:51\");\n\n script_cve_id(\"CVE-2009-1656\");\n script_bugtraq_id(34984);\n script_xref(name:\"Secunia\", value:\"35101\");\n\n script_name(english:\"Xerox WorkCentre Web Server Unspecified Command Injection (XRX09-002)\");\n script_summary(english:\"Checks Net Controller Software version of Xerox WorkCentre devices\");\n\n script_set_attribute(\n attribute:\"synopsis\",\n value:\n\"The remote multi-function device is affected by a command injection\nvulnerability.\"\n );\n script_set_attribute(\n attribute:\"description\",\n value:\n\"According to its model number and software version, the remote host\nis a Xerox WorkCentre device that reportedly has an as-yet unspecified\ncommand injection vulnerability in its web server. A remote attacker\nmay be able to leverage this issue to execute arbitrary code via\ncarefully crafted inputs on an affected web page.\"\n );\n script_set_attribute(attribute:\"see_also\", value:\"http://www.xerox.com/downloads/usa/en/c/cert_XRX09-02_v1.0.pdf\");\n script_set_attribute(\n attribute:\"solution\",\n value:\n\"Apply the P38 patch as described in the Xerox security bulletin\nreferenced in the included URL.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2009/05/15\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2009/05/15\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2009/05/15\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"remote\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/h:xerox:workcentre\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Misc.\");\n\n script_copyright(english:\"This script is Copyright (C) 2009-2018 Tenable Network Security, Inc.\");\n\n script_dependencies(\"xerox_workcentre_detect.nasl\");\n script_require_keys(\"www/xerox_workcentre\");\n\n exit(0);\n}\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\n\n# This function returns TRUE if the version string ver lies in\n# the range [low, high].\nfunction ver_inrange(ver, low, high)\n{\n local_var ver_parts, low_parts, high_parts, i, p, low_p, high_p;\n\n if (isnull(ver) || isnull(low) || isnull(high)) return FALSE;\n\n # Split levels into parts.\n ver_parts = split(ver, sep:\".\", keep:0);\n low_parts = split(low, sep:\".\", keep:0);\n high_parts = split(high, sep:\".\", keep:0);\n\n # Compare each part.\n i = 0;\n while (ver_parts[i] != NULL)\n {\n p = int(ver_parts[i]);\n low_p = int(low_parts[i]);\n if (low_p == NULL) low_p = 0;\n high_p = int(high_parts[i]);\n if (high_p == NULL) high_p = 0;\n\n if (p > low_p && p < high_p) return TRUE;\n if (p < low_p || p > high_p) return FALSE;\n ++i;\n }\n return TRUE;\n}\n\n# Check whether the device is vulnerable.\nif (get_kb_item(\"www/xerox_workcentre\"))\n{\n model = get_kb_item_or_exit(\"www/xerox_workcentre/model\");\n ssw = get_kb_item_or_exit(\"www/xerox_workcentre/ssw\");\n if (ssw && \".\" >< ssw) ssw = strstr(ssw, \".\") - \".\";\n ess = get_kb_item_or_exit(\"www/xerox_workcentre/ess\");\n\n # No need to check further if ESS has \".P38\" since that\n # indicates the patch has already been applied.\n if (ess && ess =~ \"\\.P38\") audit(AUDIT_HOST_NOT, \"affected\");\n\n # Test model number and software version against those in Xerox's security bulletin.\n if (\n (\n # nb: models 232/238/245/255/265/275 with SSW in [*.27.24.000, *.60.22.050).\n model =~ \"^(Pro )?2(3[28]|[4-7]5)($|[^0-9])\" &&\n # nb: the leading part of the System SW has already been removed.\n ver_inrange(ver:ssw, low:\"27.24.000\", high:\"60.22.049\")\n ) ||\n (\n # nb: models 7655/7665/7675 with ESS in [040.032.000, 040.033.53110).\n model =~ \"^76[5-7]5($|[^0-9])\" &&\n ver_inrange(ver:ess, low:\"040.032.0\", high:\"040.033.53109\")\n ) ||\n (\n # nb: models 5632/5638/5645/5655/5665/5675/5687 with ESS in [050.060.50730, 050.060.50980].\n model =~ \"^56(32|38|[4-7]5|87)($|[^0-9])\" &&\n ver_inrange(ver:ess, low:\"050.060.50730\", high:\"050.060.50980\")\n )\n )\n security_hole(0);\n exit(0);\n}\naudit(AUDIT_HOST_NOT, \"affected\");\n", "title": "Xerox WorkCentre Web Server Unspecified Command Injection (XRX09-002)", "type": "nessus", "viewCount": 0}, "differentElements": ["cvss"], "edition": 5, "lastseen": "2018-08-30T19:35:35"}], "edition": 9, "hashmap": [{"key": "bulletinFamily", "hash": "bbdaea376f500d25f6b0c1050311dd07"}, {"key": "cpe", "hash": "b08db2ae55a278b3b88004ac380a56ce"}, {"key": "cvelist", "hash": "163d6748503b652293ace9b05fe361ca"}, {"key": "cvss", "hash": "2bdabeb49c44761f9565717ab0e38165"}, {"key": "description", "hash": "811a7e2ea9db3f4d4cf3d86d52a67adc"}, {"key": "href", "hash": "2c227719cc867849af8d0d90406ee414"}, {"key": "modified", "hash": "015cb78ce50d3bd4e2fbe18f25603329"}, {"key": "naslFamily", "hash": "f988dc6e0b4d047c838adcca890ea132"}, {"key": "pluginID", "hash": "b9b993f4d1b942206120102f00b759fe"}, {"key": "published", "hash": "566a5975ebcf2dc7de8337df2e9f9052"}, {"key": "references", "hash": "211e10502af42974efea98b5c823badb"}, {"key": "reporter", "hash": "9cf00d658b687f030ebe173a0528c567"}, {"key": "sourceData", "hash": "ae58e31772bd5730f2f5f6fab1567697"}, {"key": "title", "hash": "f22351df383e5b6ccfe11fc31d2da8fa"}, {"key": "type", "hash": "5e0bd03bec244039678f2b955a2595aa"}], "hash": "ce4504b8a537657e14fef2f966f1e146cc60183ab496b113b0294db0bc0959aa", "viewCount": 3, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2009-1656"]}], "modified": "2019-02-21T01:11:54"}, "score": {"value": 7.9, "vector": "NONE", "modified": "2019-02-21T01:11:54"}, "vulnersScore": 7.9}, "objectVersion": "1.3", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(38790);\n script_version(\"1.13\");\n script_cvs_date(\"Date: 2018/11/15 20:50:24\");\n\n script_cve_id(\"CVE-2009-1656\");\n script_bugtraq_id(34984);\n script_xref(name:\"Secunia\", value:\"35101\");\n\n script_name(english:\"Xerox WorkCentre Web Server Unspecified Command Injection (XRX09-002)\");\n script_summary(english:\"Checks Net Controller Software version of Xerox WorkCentre devices\");\n\n script_set_attribute(\n attribute:\"synopsis\",\n value:\n\"The remote multi-function device is affected by a command injection\nvulnerability.\"\n );\n script_set_attribute(\n attribute:\"description\",\n value:\n\"According to its model number and software version, the remote host\nis a Xerox WorkCentre device that reportedly has an as-yet unspecified\ncommand injection vulnerability in its web server. A remote attacker\nmay be able to leverage this issue to execute arbitrary code via\ncarefully crafted inputs on an affected web page.\"\n );\n script_set_attribute(attribute:\"see_also\", value:\"https://www.xerox.com/downloads/usa/en/c/cert_XRX09-02_v1.0.pdf\");\n script_set_attribute(\n attribute:\"solution\",\n value:\n\"Apply the P38 patch as described in the Xerox security bulletin\nreferenced in the included URL.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2009/05/15\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2009/05/15\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2009/05/15\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"remote\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/h:xerox:workcentre\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Misc.\");\n\n script_copyright(english:\"This script is Copyright (C) 2009-2018 Tenable Network Security, Inc.\");\n\n script_dependencies(\"xerox_workcentre_detect.nasl\");\n script_require_keys(\"www/xerox_workcentre\");\n\n exit(0);\n}\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\n\n# This function returns TRUE if the version string ver lies in\n# the range [low, high].\nfunction ver_inrange(ver, low, high)\n{\n local_var ver_parts, low_parts, high_parts, i, p, low_p, high_p;\n\n if (isnull(ver) || isnull(low) || isnull(high)) return FALSE;\n\n # Split levels into parts.\n ver_parts = split(ver, sep:\".\", keep:0);\n low_parts = split(low, sep:\".\", keep:0);\n high_parts = split(high, sep:\".\", keep:0);\n\n # Compare each part.\n i = 0;\n while (ver_parts[i] != NULL)\n {\n p = int(ver_parts[i]);\n low_p = int(low_parts[i]);\n if (low_p == NULL) low_p = 0;\n high_p = int(high_parts[i]);\n if (high_p == NULL) high_p = 0;\n\n if (p > low_p && p < high_p) return TRUE;\n if (p < low_p || p > high_p) return FALSE;\n ++i;\n }\n return TRUE;\n}\n\n# Check whether the device is vulnerable.\nif (get_kb_item(\"www/xerox_workcentre\"))\n{\n model = get_kb_item_or_exit(\"www/xerox_workcentre/model\");\n ssw = get_kb_item_or_exit(\"www/xerox_workcentre/ssw\");\n if (ssw && \".\" >< ssw) ssw = strstr(ssw, \".\") - \".\";\n ess = get_kb_item_or_exit(\"www/xerox_workcentre/ess\");\n\n # No need to check further if ESS has \".P38\" since that\n # indicates the patch has already been applied.\n if (ess && ess =~ \"\\.P38\") audit(AUDIT_HOST_NOT, \"affected\");\n\n # Test model number and software version against those in Xerox's security bulletin.\n if (\n (\n # nb: models 232/238/245/255/265/275 with SSW in [*.27.24.000, *.60.22.050).\n model =~ \"^(Pro )?2(3[28]|[4-7]5)($|[^0-9])\" &&\n # nb: the leading part of the System SW has already been removed.\n ver_inrange(ver:ssw, low:\"27.24.000\", high:\"60.22.049\")\n ) ||\n (\n # nb: models 7655/7665/7675 with ESS in [040.032.000, 040.033.53110).\n model =~ \"^76[5-7]5($|[^0-9])\" &&\n ver_inrange(ver:ess, low:\"040.032.0\", high:\"040.033.53109\")\n ) ||\n (\n # nb: models 5632/5638/5645/5655/5665/5675/5687 with ESS in [050.060.50730, 050.060.50980].\n model =~ \"^56(32|38|[4-7]5|87)($|[^0-9])\" &&\n ver_inrange(ver:ess, low:\"050.060.50730\", high:\"050.060.50980\")\n )\n )\n security_hole(0);\n exit(0);\n}\naudit(AUDIT_HOST_NOT, \"affected\");\n", "naslFamily": "Misc.", "pluginID": "38790", "cpe": ["cpe:/h:xerox:workcentre"], "scheme": null}

{"cve": [{"lastseen": "2019-05-29T18:09:58", "bulletinFamily": "NVD", "description": "Xerox WorkCentre and WorkCentre Pro 232, 238, 245, 255, 265, 275; and WorkCentre 5632, 5638, 5645, 5655, 5665, 5675, 5687, 7655, 7656, and 7675 allows remote attackers to execute arbitrary commands via unknown attack vectors, aka \"command injection vulnerability.\"", "modified": "2017-08-17T01:30:00", "id": "CVE-2009-1656", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-1656", "published": "2009-05-16T18:30:00", "title": "CVE-2009-1656", "type": "cve", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}}]}