3 matches found
Lexmark Printer config.html Administrator Authentication Bypass
The version of the remote Lexmark printer is potentially affected by a security bypass vulnerability. An input validation error exists related to the webpage 'config.html' and the 'vac.255.GENPASSWORD' parameter that could allow an attacker to change the administrator password to a blank string. ...
CVE-2013-6032
CVE-2013-6032 affects Lexmark printers (models listed in the CVE description) and is triggered by a flaw in POSTing vac.255.GENPASSWORD to /cgi-bin/postpf/cgi-bin/dynamic/config/config.html, allowing removal of the Password Protect administrator password. The vulnerability enables remote attacker...
Lexmark laser printers contain multiple vulnerabilities
Overview Certain Lexmark devices are vulnerable to unverified password changes and stored cross-site scripting attacks. Description CWE-620: Unverified Password Change - CVE-2013-6032Certain models of Lexmark laser printers and MarkNet devices are vulnerable to an attack which allows a remote...