OpenCVE

Unspecified vulnerability in the ESS/ Network Controller in Xerox CopyCentre and Xerox WorkCentre Pro, running software 1.001.02.073 or earlier, or 1.001.02.074 before 1.001.02.715, causes the Immediate Image Overwrite feature to fail after a power loss, which could leave data exposed to attack.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact None

AV:N/AC:L/Au:N/C:P/I:P/A:N

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Xerox	Copycentre C65 Copycentre C65 Firmware Copycentre C75 Copycentre C75 Firmware Copycentre C90 Copycentre C90 Firmware Workcentre Pro 65 Workcentre Pro 65 Firmware Workcentre Pro 75 Workcentre Pro 75 Firmware Workcentre Pro 90 Workcentre Pro 90 Firmware

Configuration 1 [-]

AND

OR	cpe:2.3:o:xerox:copycentre_c65_firmware::::::::
	cpe:2.3:o:xerox:copycentre_c65_firmware::::::::

cpe:2.3:h:xerox:copycentre_c65:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND

OR	cpe:2.3:o:xerox:copycentre_c75_firmware::::::::
	cpe:2.3:o:xerox:copycentre_c75_firmware::::::::

cpe:2.3:h:xerox:copycentre_c75:-:*:*:*:*:*:*:*

Configuration 3 [-]

AND

OR	cpe:2.3:o:xerox:copycentre_c90_firmware::::::::
	cpe:2.3:o:xerox:copycentre_c90_firmware::::::::

cpe:2.3:h:xerox:copycentre_c90:-:*:*:*:*:*:*:*

Configuration 4 [-]

AND

OR	cpe:2.3:o:xerox:workcentre_pro_65_firmware::::::::
	cpe:2.3:o:xerox:workcentre_pro_65_firmware::::::::

cpe:2.3:h:xerox:workcentre_pro_65:-:*:*:*:*:*:*:*

Configuration 5 [-]

AND

OR	cpe:2.3:o:xerox:workcentre_pro_75_firmware::::::::
	cpe:2.3:o:xerox:workcentre_pro_75_firmware::::::::

cpe:2.3:h:xerox:workcentre_pro_75:-:*:*:*:*:*:*:*

Configuration 6 [-]

AND

OR	cpe:2.3:o:xerox:workcentre_pro_90_firmware::::::::
	cpe:2.3:o:xerox:workcentre_pro_90_firmware::::::::

cpe:2.3:h:xerox:workcentre_pro_90:-:*:*:*:*:*:*:*

No data.

References

Link	Providers
http://secunia.com/advisories/19146
http://securitytracker.com/id?1015738
http://www.osvdb.org/23728
http://www.vupen.com/english/advisories/2006/0857
http://www.xerox.com/downloads/usa/en/c/cert_XRX06_002.pdf
https://exchange.xforce.ibmcloud.com/vulnerabilities/25176

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2006-03-10T02:00:00

Updated: 2024-08-07T17:03:27.524Z

Reserved: 2006-03-10T00:00:00

Link: CVE-2006-1139

Vulnrichment

No data.

NVD

Status : Modified

Published: 2006-03-10T02:02:00.000

Modified: 2024-11-21T00:08:10.263

Link: CVE-2006-1139

Redhat

No data.

Metrics

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact None

Affected Vendors & Products

Metrics

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact None

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object