Vulnerability Description
Cross-site scripting (XSS) vulnerability in Xerox MicroServer Web Server in Document Centre 220 through 265, 332 and 340, 420 through 490, and 535 through 555 allows remote attackers to inject arbitrary web script or HTML and modify web pages via unknown vectors.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Xerox | Document Centre 265 | All versions |
| Xerox | Document Centre 332 | All versions |
| Xerox | Document Centre 340 | All versions |
| Xerox | Document Centre 420 | All versions |
| Xerox | Document Centre 490 | All versions |
| Xerox | Document Centre 535 | All versions |
| Xerox | Document Centre 555 | All versions |
References
- http://secunia.com/advisories/16467PatchVendor Advisory
- http://securitytracker.com/id?1014720
- http://www.xerox.com/downloads/usa/en/c/cert_XRX05_008.pdfPatchVendor Advisory
- http://www.xerox.com/downloads/usa/en/c/cert_XRX05_009.pdfPatchVendor Advisory
- http://secunia.com/advisories/16467PatchVendor Advisory
- http://securitytracker.com/id?1014720
- http://www.xerox.com/downloads/usa/en/c/cert_XRX05_008.pdfPatchVendor Advisory
- http://www.xerox.com/downloads/usa/en/c/cert_XRX05_009.pdfPatchVendor Advisory
FAQ
What is CVE-2005-2647?
CVE-2005-2647 is a vulnerability with a CVSS score of 4.3 (MEDIUM). Cross-site scripting (XSS) vulnerability in Xerox MicroServer Web Server in Document Centre 220 through 265, 332 and 340, 420 through 490, and 535 through 555 allows remote attackers to inject arbitra...
How severe is CVE-2005-2647?
CVE-2005-2647 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2005-2647?
Check the references section above for vendor advisories and patch information. Affected products include: Xerox Document Centre 265, Xerox Document Centre 332, Xerox Document Centre 340, Xerox Document Centre 420, Xerox Document Centre 490.