Vulnerability Description
Cross-site scripting vulnerability in ESS/ Network Controller and MicroServer Web Server in Xerox WorkCentre Pro and Xerox WorkCentre running software 13.027.24.015 and 14.027.24.015 allows remote attackers to inject arbitrary web script or HTML via unknown attack vectors.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Xerox | Workcentre 232 | All versions |
| Xerox | Workcentre 238 | All versions |
| Xerox | Workcentre 245 | All versions |
| Xerox | Workcentre 255 | All versions |
| Xerox | Workcentre 265 | All versions |
| Xerox | Workcentre 275 | All versions |
References
- http://secunia.com/advisories/18952Vendor Advisory
- http://www.securityfocus.com/bid/16727
- http://www.vupen.com/english/advisories/2006/0668
- http://www.xerox.com/downloads/usa/en/c/cert_XRX06_001.pdfPatchVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24806
- http://secunia.com/advisories/18952Vendor Advisory
- http://www.securityfocus.com/bid/16727
- http://www.vupen.com/english/advisories/2006/0668
- http://www.xerox.com/downloads/usa/en/c/cert_XRX06_001.pdfPatchVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24806
FAQ
What is CVE-2006-0827?
CVE-2006-0827 is a vulnerability with a CVSS score of 5.0 (MEDIUM). Cross-site scripting vulnerability in ESS/ Network Controller and MicroServer Web Server in Xerox WorkCentre Pro and Xerox WorkCentre running software 13.027.24.015 and 14.027.24.015 allows remote att...
How severe is CVE-2006-0827?
CVE-2006-0827 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2006-0827?
Check the references section above for vendor advisories and patch information. Affected products include: Xerox Workcentre 232, Xerox Workcentre 238, Xerox Workcentre 245, Xerox Workcentre 255, Xerox Workcentre 265.