Vulnerability Description
The print-from-email feature in the Canon ImageRUNNER (iR) 5000i and C3200 digital printer, when not using IP address range filtering, allows remote attackers to print arbitrary text without authentication via a text/plain email to TCP port 25.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Canon | Imagerunner 5000I | All versions |
| Canon | Imagerunner C3200 | All versions |
References
- http://secunia.com/advisories/12659/Vendor Advisory
- http://www.securityfocus.com/archive/1/376242Vendor Advisory
- http://www.securityfocus.com/bid/11247
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17512
- http://secunia.com/advisories/12659/Vendor Advisory
- http://www.securityfocus.com/archive/1/376242Vendor Advisory
- http://www.securityfocus.com/bid/11247
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17512
FAQ
What is CVE-2004-2166?
CVE-2004-2166 is a vulnerability with a CVSS score of 7.5 (HIGH). The print-from-email feature in the Canon ImageRUNNER (iR) 5000i and C3200 digital printer, when not using IP address range filtering, allows remote attackers to print arbitrary text without authentic...
How severe is CVE-2004-2166?
CVE-2004-2166 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2004-2166?
Check the references section above for vendor advisories and patch information. Affected products include: Canon Imagerunner 5000I, Canon Imagerunner C3200.