CVE-2006-1137 — MEDIUM (5.0)

Q: How severe is CVE-2006-1137?

CVE-2006-1137 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2006-1137?

Check the references section above for vendor advisories and patch information. Affected products include: Xerox Copycentre C65 Firmware, Xerox Copycentre C65, Xerox Copycentre C75 Firmware, Xerox Copycentre C75, Xerox Copycentre C90 Firmware.

Vulnerability Description

Multiple unspecified vulnerabilities in Xerox CopyCentre and Xerox WorkCentre Pro, running software 1.001.02.073 or earlier, or 1.001.02.074 before 1.001.02.715, allow remote attackers to cause an unspecified denial of service via a crafted PostScript file that will (1) "navigate through the directory" or (2) a "file sent to expose TCP/IP ports".

CVSS Score

5.0

MEDIUM

AV:N/AC:L/Au:N/C:N/I:N/A:P

Confidentiality

NONE

Integrity

NONE

Availability

PARTIAL

Affected Products

Vendor	Product	Versions
Xerox	Copycentre C65 Firmware	<= 1.001.02.073
Xerox	Copycentre C65	-
Xerox	Copycentre C75 Firmware	<= 1.001.02.073
Xerox	Copycentre C75	-
Xerox	Copycentre C90 Firmware	<= 1.001.02.073
Xerox	Copycentre C90	-
Xerox	Workcentre Pro 65 Firmware	<= 1.001.02.073
Xerox	Workcentre Pro 65	-
Xerox	Workcentre Pro 75 Firmware	<= 1.001.02.073
Xerox	Workcentre Pro 75	-
Xerox	Workcentre Pro 90 Firmware	<= 1.001.02.073
Xerox	Workcentre Pro 90	-

References

http://secunia.com/advisories/19146Third Party Advisory
http://securitytracker.com/id?1015738Third Party AdvisoryVDB Entry
http://www.osvdb.org/23725Broken Link
http://www.osvdb.org/23726Broken Link
http://www.securityfocus.com/bid/17014Third Party AdvisoryVDB Entry
http://www.vupen.com/english/advisories/2006/0857Permissions RequiredThird Party Advisory
http://www.xerox.com/downloads/usa/en/c/cert_XRX06_002.pdfBroken LinkVendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/25173Third Party AdvisoryVDB Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/25174Third Party AdvisoryVDB Entry
http://secunia.com/advisories/19146Third Party Advisory
http://securitytracker.com/id?1015738Third Party AdvisoryVDB Entry
http://www.osvdb.org/23725Broken Link
http://www.osvdb.org/23726Broken Link
http://www.securityfocus.com/bid/17014Third Party AdvisoryVDB Entry
http://www.vupen.com/english/advisories/2006/0857Permissions RequiredThird Party Advisory

FAQ

What is CVE-2006-1137?

CVE-2006-1137 is a vulnerability with a CVSS score of 5.0 (MEDIUM). Multiple unspecified vulnerabilities in Xerox CopyCentre and Xerox WorkCentre Pro, running software 1.001.02.073 or earlier, or 1.001.02.074 before 1.001.02.715, allow remote attackers to cause an uns...

How severe is CVE-2006-1137?

CVE-2006-1137 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2006-1137?

Check the references section above for vendor advisories and patch information. Affected products include: Xerox Copycentre C65 Firmware, Xerox Copycentre C65, Xerox Copycentre C75 Firmware, Xerox Copycentre C75, Xerox Copycentre C90 Firmware.