CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
Confidence
Low
EPSS
Percentile
90.0%
Fuji Xerox Printing Systems (FXPS) print engine, as used in products including (1) Dell 3000cn through 5110cn and (2) Fuji Xerox DocuPrint firmware before 20060628 and Network Option Card firmware before 5.13, allows remote attackers to use the FTP printing interface as a proxy (“FTP bounce”) by using arbitrary PORT arguments to connect to systems for which access would be otherwise restricted.
Vendor | Product | Version | CPE |
---|---|---|---|
dell | 3000cn | * | cpe:2.3:h:dell:3000cn:*:*:*:*:*:*:*:* |
dell | 3010cn | * | cpe:2.3:h:dell:3010cn:*:*:*:*:*:*:*:* |
dell | 3100cn | * | cpe:2.3:h:dell:3100cn:*:*:*:*:*:*:*:* |
dell | 3110cn | * | cpe:2.3:h:dell:3110cn:*:*:*:*:*:*:*:* |
dell | 5100cn | * | cpe:2.3:h:dell:5100cn:*:*:*:*:*:*:*:* |
dell | 5110cn | * | cpe:2.3:h:dell:5110cn:*:*:*:*:*:*:*:* |
fuji_xerox | docuprint_181 | * | cpe:2.3:h:fuji_xerox:docuprint_181:*:*:*:*:*:*:*:* |
fuji_xerox | docuprint_181_network_option_card | * | cpe:2.3:h:fuji_xerox:docuprint_181_network_option_card:*:*:*:*:*:*:*:* |
fuji_xerox | docuprint_211 | * | cpe:2.3:h:fuji_xerox:docuprint_211:*:*:*:*:*:*:*:* |
fuji_xerox | docuprint_211_network_option_card | * | cpe:2.3:h:fuji_xerox:docuprint_211_network_option_card:*:*:*:*:*:*:*:* |
itso.iu.edu/20060824_FXPS_Print_Engine_Vulnerabilities
marc.info/?l=bugtraq&m=115652437223454&w=2
secunia.com/advisories/21630
secunia.com/advisories/22463
www.osvdb.org/28249
www.securityfocus.com/archive/1/444321/100/0/threaded
www.securityfocus.com/bid/19711
www.vupen.com/english/advisories/2006/3401
exchange.xforce.ibmcloud.com/vulnerabilities/28637