1. Home
  2. CVE Database
  3. CVE-2008-0303
MEDIUM · 6.4

CVE-2008-0303

The FTP print feature in multiple Canon printers, including imageRUNNER and imagePRESS, allow remote attackers to use the server as an inadvertent proxy via a modified PORT command, aka FTP bounce.

Vulnerability Description

The FTP print feature in multiple Canon printers, including imageRUNNER and imagePRESS, allow remote attackers to use the server as an inadvertent proxy via a modified PORT command, aka FTP bounce.

CVSS Score

6.4

MEDIUM

AV:N/AC:L/Au:N/C:N/I:P/A:P
Confidentiality
NONE
Integrity
PARTIAL
Availability
PARTIAL

Affected Products

VendorProductVersions
CanonI-Sensyslbp3360
CanonImagepressc1
CanonImagerunner85plus
CanonImagerunner 2620All versions
CanonImagerunner 5000IAll versions
CanonImagerunner 5020All versions
CanonImagerunner 6870All versions
CanonImagerunner 8500All versions
CanonImagerunner 9070All versions
CanonImagerunner C3200All versions
CanonImagerunner C3220All versions
CanonImagerunner C6800All versions

References

FAQ

What is CVE-2008-0303?

CVE-2008-0303 is a vulnerability with a CVSS score of 6.4 (MEDIUM). The FTP print feature in multiple Canon printers, including imageRUNNER and imagePRESS, allow remote attackers to use the server as an inadvertent proxy via a modified PORT command, aka FTP bounce.

How severe is CVE-2008-0303?

CVE-2008-0303 has been rated MEDIUM with a CVSS base score of 6.4/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2008-0303?

Check the references section above for vendor advisories and patch information. Affected products include: Canon I-Sensys, Canon Imagepress, Canon Imagerunner, Canon Imagerunner 2620, Canon Imagerunner 5000I.