CVE-2006-1139 — MEDIUM (6.4)

Q: How severe is CVE-2006-1139?

CVE-2006-1139 has been rated MEDIUM with a CVSS base score of 6.4/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2006-1139?

Check the references section above for vendor advisories and patch information. Affected products include: Xerox Copycentre C65 Firmware, Xerox Copycentre C65, Xerox Copycentre C75 Firmware, Xerox Copycentre C75, Xerox Copycentre C90 Firmware.

Vulnerability Description

Unspecified vulnerability in the ESS/ Network Controller in Xerox CopyCentre and Xerox WorkCentre Pro, running software 1.001.02.073 or earlier, or 1.001.02.074 before 1.001.02.715, causes the Immediate Image Overwrite feature to fail after a power loss, which could leave data exposed to attack.

CVSS Score

6.4

MEDIUM

AV:N/AC:L/Au:N/C:P/I:P/A:N

Confidentiality

PARTIAL

Integrity

PARTIAL

Availability

NONE

Affected Products

Vendor	Product	Versions
Xerox	Copycentre C65 Firmware	<= 1.001.02.073
Xerox	Copycentre C65	-
Xerox	Copycentre C75 Firmware	<= 1.001.02.073
Xerox	Copycentre C75	-
Xerox	Copycentre C90 Firmware	<= 1.001.02.073
Xerox	Copycentre C90	-
Xerox	Workcentre Pro 65 Firmware	<= 1.001.02.073
Xerox	Workcentre Pro 65	-
Xerox	Workcentre Pro 75 Firmware	<= 1.001.02.073
Xerox	Workcentre Pro 75	-
Xerox	Workcentre Pro 90 Firmware	<= 1.001.02.073
Xerox	Workcentre Pro 90	-

References

http://secunia.com/advisories/19146Third Party Advisory
http://securitytracker.com/id?1015738Third Party AdvisoryVDB Entry
http://www.osvdb.org/23728Broken Link
http://www.vupen.com/english/advisories/2006/0857Permissions RequiredThird Party Advisory
http://www.xerox.com/downloads/usa/en/c/cert_XRX06_002.pdfBroken LinkVendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/25176Third Party AdvisoryVDB Entry
http://secunia.com/advisories/19146Third Party Advisory
http://securitytracker.com/id?1015738Third Party AdvisoryVDB Entry
http://www.osvdb.org/23728Broken Link
http://www.vupen.com/english/advisories/2006/0857Permissions RequiredThird Party Advisory
http://www.xerox.com/downloads/usa/en/c/cert_XRX06_002.pdfBroken LinkVendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/25176Third Party AdvisoryVDB Entry

FAQ

What is CVE-2006-1139?

CVE-2006-1139 is a vulnerability with a CVSS score of 6.4 (MEDIUM). Unspecified vulnerability in the ESS/ Network Controller in Xerox CopyCentre and Xerox WorkCentre Pro, running software 1.001.02.073 or earlier, or 1.001.02.074 before 1.001.02.715, causes the Immedia...

How severe is CVE-2006-1139?

CVE-2006-1139 has been rated MEDIUM with a CVSS base score of 6.4/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2006-1139?

Check the references section above for vendor advisories and patch information. Affected products include: Xerox Copycentre C65 Firmware, Xerox Copycentre C65, Xerox Copycentre C75 Firmware, Xerox Copycentre C75, Xerox Copycentre C90 Firmware.