{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2006-08-24T00:00:00", "descriptions": [{"lang": "en", "value": "Fuji Xerox Printing Systems (FXPS) print engine, as used in products including (1) Dell 3000cn through 5110cn and (2) Fuji Xerox DocuPrint firmware before 20060628 and Network Option Card firmware before 5.13, allows remote attackers to use the FTP printing interface as a proxy (\"FTP bounce\") by using arbitrary PORT arguments to connect to systems for which access would be otherwise restricted."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-10-18T14:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "19711", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/19711"}, {"name": "ADV-2006-3401", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2006/3401"}, {"name": "28249", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/28249"}, {"name": "21630", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/21630"}, {"name": "20060825 Indiana University Security Advisory: Fuji Xerox Printing Systems (FXPS) print engine vulnerabilitie", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://marc.info/?l=bugtraq&m=115652437223454&w=2"}, {"tags": ["x_refsource_MISC"], "url": "http://itso.iu.edu/20060824_FXPS_Print_Engine_Vulnerabilities"}, {"name": "fxps-port-security-bypass(28637)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/28637"}, {"name": "20060825 Indiana University Security Advisory: Fuji Xerox Printing Systems (FXPS) print engine vulnerabilities", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/444321/100/0/threaded"}, {"name": "22463", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/22463"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2006-2112", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Fuji Xerox Printing Systems (FXPS) print engine, as used in products including (1) Dell 3000cn through 5110cn and (2) Fuji Xerox DocuPrint firmware before 20060628 and Network Option Card firmware before 5.13, allows remote attackers to use the FTP printing interface as a proxy (\"FTP bounce\") by using arbitrary PORT arguments to connect to systems for which access would be otherwise restricted."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "19711", "refsource": "BID", "url": "http://www.securityfocus.com/bid/19711"}, {"name": "ADV-2006-3401", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2006/3401"}, {"name": "28249", "refsource": "OSVDB", "url": "http://www.osvdb.org/28249"}, {"name": "21630", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/21630"}, {"name": "20060825 Indiana University Security Advisory: Fuji Xerox Printing Systems (FXPS) print engine vulnerabilitie", "refsource": "BUGTRAQ", "url": "http://marc.info/?l=bugtraq&m=115652437223454&w=2"}, {"name": "http://itso.iu.edu/20060824_FXPS_Print_Engine_Vulnerabilities", "refsource": "MISC", "url": "http://itso.iu.edu/20060824_FXPS_Print_Engine_Vulnerabilities"}, {"name": "fxps-port-security-bypass(28637)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/28637"}, {"name": "20060825 Indiana University Security Advisory: Fuji Xerox Printing Systems (FXPS) print engine vulnerabilities", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/444321/100/0/threaded"}, {"name": "22463", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/22463"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T17:35:31.374Z"}, "title": "CVE Program Container", "references": [{"name": "19711", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/19711"}, {"name": "ADV-2006-3401", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2006/3401"}, {"name": "28249", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/28249"}, {"name": "21630", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/21630"}, {"name": "20060825 Indiana University Security Advisory: Fuji Xerox Printing Systems (FXPS) print engine vulnerabilitie", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://marc.info/?l=bugtraq&m=115652437223454&w=2"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://itso.iu.edu/20060824_FXPS_Print_Engine_Vulnerabilities"}, {"name": "fxps-port-security-bypass(28637)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/28637"}, {"name": "20060825 Indiana University Security Advisory: Fuji Xerox Printing Systems (FXPS) print engine vulnerabilities", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/444321/100/0/threaded"}, {"name": "22463", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/22463"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2006-2112", "datePublished": "2006-08-25T01:00:00", "dateReserved": "2006-05-01T00:00:00", "dateUpdated": "2024-08-07T17:35:31.374Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:h:dell:3000cn:*:*:*:*:*:*:*:*", "matchCriteriaId": "532844ED-5FC7-4E82-B952-329DF0633284", "vulnerable": true}, {"criteria": "cpe:2.3:h:dell:3010cn:*:*:*:*:*:*:*:*", "matchCriteriaId": "A989FB9D-2D1D-4E3B-931E-F07690973A42", "vulnerable": true}, {"criteria": "cpe:2.3:h:dell:3100cn:*:*:*:*:*:*:*:*", "matchCriteriaId": "22B029AC-DC1F-4E13-8920-B935400872BD", "vulnerable": true}, {"criteria": "cpe:2.3:h:dell:3110cn:*:*:*:*:*:*:*:*", "matchCriteriaId": "540F4B27-245A-48BD-9256-D998C0A2BD42", "vulnerable": true}, {"criteria": "cpe:2.3:h:dell:5100cn:*:*:*:*:*:*:*:*", "matchCriteriaId": "6A101A57-0EEF-4F38-A5D2-CBA609185183", "vulnerable": true}, {"criteria": "cpe:2.3:h:dell:5110cn:*:*:*:*:*:*:*:*", "matchCriteriaId": "60B111FC-9F91-40F1-99DB-06912966AC2F", "vulnerable": true}, {"criteria": "cpe:2.3:h:fuji_xerox:docuprint_181:*:*:*:*:*:*:*:*", "matchCriteriaId": "72A3031C-8F6A-4B4A-ABD0-D757BF273C1D", "vulnerable": true}, {"criteria": "cpe:2.3:h:fuji_xerox:docuprint_181_network_option_card:*:*:*:*:*:*:*:*", "matchCriteriaId": "45F323A9-A927-46CB-A5E3-CD15E19F5AB9", "vulnerable": true}, {"criteria": "cpe:2.3:h:fuji_xerox:docuprint_211:*:*:*:*:*:*:*:*", "matchCriteriaId": "F0B77692-BC61-4DA1-B663-DB94523D7737", "vulnerable": true}, {"criteria": "cpe:2.3:h:fuji_xerox:docuprint_211_network_option_card:*:*:*:*:*:*:*:*", "matchCriteriaId": "1F55AAD7-51CD-4E27-B371-054F8BA8D5F9", "vulnerable": true}, {"criteria": "cpe:2.3:h:fuji_xerox:docuprint_c1616:*:*:*:*:*:*:*:*", "matchCriteriaId": "690C64B8-73C5-44D5-9175-74E3A95AA582", "vulnerable": true}, {"criteria": "cpe:2.3:h:fuji_xerox:docuprint_c1616_network_option_card:*:*:*:*:*:*:*:*", "matchCriteriaId": "C451049F-4F93-4E56-B6D0-F20E9E6EEA1C", "vulnerable": true}, {"criteria": "cpe:2.3:h:fuji_xerox:docuprint_c2535a:*:*:*:*:*:*:*:*", "matchCriteriaId": "03B73A75-921E-4C95-8C23-CD948CB3272E", "vulnerable": true}, {"criteria": "cpe:2.3:h:fuji_xerox:docuprint_c525a:*:*:*:*:*:*:*:*", "matchCriteriaId": "DC4EA020-6728-4B85-9E62-E12394CD75E6", "vulnerable": true}, {"criteria": "cpe:2.3:h:fuji_xerox:docuprint_c525a_network_option_card:*:*:*:*:*:*:*:*", "matchCriteriaId": "7DE72B32-B190-4AE0-AF83-C46E6F4B1EE0", "vulnerable": true}, {"criteria": "cpe:2.3:h:fuji_xerox:docuprint_c830:*:*:*:*:*:*:*:*", "matchCriteriaId": "3EA7F17D-9E0A-447B-BCB6-A92EF808D8D9", "vulnerable": true}, {"criteria": "cpe:2.3:h:fuji_xerox:docuprint_c830_network_option_card:*:*:*:*:*:*:*:*", "matchCriteriaId": "A32B109E-96DB-47F4-BC71-CBA2A7BCF1BD", "vulnerable": true}, {"criteria": "cpe:2.3:h:fuji_xerox:fuji_xerox_printing_systems_print_engine:*:*:*:*:*:*:*:*", "matchCriteriaId": "EADEBB9E-0656-440A-B21F-C6896F46E929", "vulnerable": true}, {"criteria": "cpe:2.3:h:fuji_xerox:phaser_6201j:*:*:*:*:*:*:*:*", "matchCriteriaId": "E682A0CD-C660-48AE-BC60-C50115FC2114", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Fuji Xerox Printing Systems (FXPS) print engine, as used in products including (1) Dell 3000cn through 5110cn and (2) Fuji Xerox DocuPrint firmware before 20060628 and Network Option Card firmware before 5.13, allows remote attackers to use the FTP printing interface as a proxy (\"FTP bounce\") by using arbitrary PORT arguments to connect to systems for which access would be otherwise restricted."}, {"lang": "es", "value": "Motor de impresi\u00f3n Fuji Xerox Printing Systems (FXPS), como se usa en productos incluyendo (1) Dell 3000cn hasta la versi\u00f3n 5110cn y (2) firmware Fuji Xerox DocuPrint en versiones anteriores a 20060628 y firmware Network Option Card en versiones anteriores a 5.13, permite a atacantes utilizar la interfaz de impresi\u00f3n FTP como un proxy (\"FTP bounce\") utilizando argumentos PORT arbitrarios para conectarse a sistemas para los cuales el acceso estar\u00eda de lo contrario restringido."}], "id": "CVE-2006-2112", "lastModified": "2024-11-21T00:10:35.220", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 7.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": true, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2006-08-25T01:04:00.000", "references": [{"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://itso.iu.edu/20060824_FXPS_Print_Engine_Vulnerabilities"}, {"source": "cve@mitre.org", "url": "http://marc.info/?l=bugtraq&m=115652437223454&w=2"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/21630"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/22463"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/28249"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/444321/100/0/threaded"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/19711"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://www.vupen.com/english/advisories/2006/3401"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/28637"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "http://itso.iu.edu/20060824_FXPS_Print_Engine_Vulnerabilities"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://marc.info/?l=bugtraq&m=115652437223454&w=2"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/21630"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/22463"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.osvdb.org/28249"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/archive/1/444321/100/0/threaded"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/19711"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://www.vupen.com/english/advisories/2006/3401"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/28637"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-264"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}