Vulnerability Description
Fuji Xerox Printing Systems (FXPS) print engine, as used in products including (1) Dell 3000cn through 5110cn and (2) Fuji Xerox DocuPrint firmware before 20060628 and Network Option Card firmware before 5.13, allows remote attackers to use the FTP printing interface as a proxy ("FTP bounce") by using arbitrary PORT arguments to connect to systems for which access would be otherwise restricted.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Dell | 3000Cn | All versions |
| Dell | 3010Cn | All versions |
| Dell | 3100Cn | All versions |
| Dell | 3110Cn | All versions |
| Dell | 5100Cn | All versions |
| Dell | 5110Cn | All versions |
| Fuji Xerox | Docuprint 181 | All versions |
| Fuji Xerox | Docuprint 181 Network Option Card | All versions |
| Fuji Xerox | Docuprint 211 | All versions |
| Fuji Xerox | Docuprint 211 Network Option Card | All versions |
| Fuji Xerox | Docuprint C1616 | All versions |
| Fuji Xerox | Docuprint C1616 Network Option Card | All versions |
| Fuji Xerox | Docuprint C2535A | All versions |
| Fuji Xerox | Docuprint C525A | All versions |
| Fuji Xerox | Docuprint C525A Network Option Card | All versions |
| Fuji Xerox | Docuprint C830 | All versions |
| Fuji Xerox | Docuprint C830 Network Option Card | All versions |
| Fuji Xerox | Fuji Xerox Printing Systems Print Engine | All versions |
| Fuji Xerox | Phaser 6201J | All versions |
Related Weaknesses (CWE)
References
- http://itso.iu.edu/20060824_FXPS_Print_Engine_VulnerabilitiesPatch
- http://marc.info/?l=bugtraq&m=115652437223454&w=2
- http://secunia.com/advisories/21630Vendor Advisory
- http://secunia.com/advisories/22463Vendor Advisory
- http://www.osvdb.org/28249
- http://www.securityfocus.com/archive/1/444321/100/0/threaded
- http://www.securityfocus.com/bid/19711
- http://www.vupen.com/english/advisories/2006/3401Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/28637
- http://itso.iu.edu/20060824_FXPS_Print_Engine_VulnerabilitiesPatch
- http://marc.info/?l=bugtraq&m=115652437223454&w=2
- http://secunia.com/advisories/21630Vendor Advisory
- http://secunia.com/advisories/22463Vendor Advisory
- http://www.osvdb.org/28249
- http://www.securityfocus.com/archive/1/444321/100/0/threaded
FAQ
What is CVE-2006-2112?
CVE-2006-2112 is a vulnerability with a CVSS score of 7.5 (HIGH). Fuji Xerox Printing Systems (FXPS) print engine, as used in products including (1) Dell 3000cn through 5110cn and (2) Fuji Xerox DocuPrint firmware before 20060628 and Network Option Card firmware bef...
How severe is CVE-2006-2112?
CVE-2006-2112 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2006-2112?
Check the references section above for vendor advisories and patch information. Affected products include: Dell 3000Cn, Dell 3010Cn, Dell 3100Cn, Dell 3110Cn, Dell 5100Cn.