CVE-2006-6472 — HIGH (10.0)

Q: How severe is CVE-2006-6472?

CVE-2006-6472 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2006-6472?

Check the references section above for vendor advisories and patch information. Affected products include: Xerox Workcentre.

Vulnerability Description

The httpd.conf file in Xerox WorkCentre and WorkCentre Pro before 12.050.03.000, 13.x before 13.050.03.000, and 14.x before 14.050.03.000 configures port 443 to be always active, which has unknown impact and remote attack vectors.

CVSS Score

10.0

HIGH

AV:N/AC:L/Au:N/C:C/I:C/A:C

Confidentiality

COMPLETE

Integrity

COMPLETE

Availability

COMPLETE

Affected Products

Vendor	Product	Versions
Xerox	Workcentre	<= 13.050.02.000

References

http://secunia.com/advisories/23265PatchVendor Advisory
http://www.xerox.com/downloads/usa/en/c/cert_XRX06_004_v11.pdfVendor Advisory
http://secunia.com/advisories/23265PatchVendor Advisory
http://www.xerox.com/downloads/usa/en/c/cert_XRX06_004_v11.pdfVendor Advisory

FAQ

What is CVE-2006-6472?

CVE-2006-6472 is a vulnerability with a CVSS score of 10.0 (HIGH). The httpd.conf file in Xerox WorkCentre and WorkCentre Pro before 12.050.03.000, 13.x before 13.050.03.000, and 14.x before 14.050.03.000 configures port 443 to be always active, which has unknown imp...

How severe is CVE-2006-6472?

CVE-2006-6472 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2006-6472?

Check the references section above for vendor advisories and patch information. Affected products include: Xerox Workcentre.