{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2006-08-24T00:00:00", "descriptions": [{"lang": "en", "value": "The embedded HTTP server in Fuji Xerox Printing Systems (FXPS) print engine, as used in products including (1) Dell 3000cn through 5110cn and (2) Fuji Xerox DocuPrint firmware before 20060628 and Network Option Card firmware before 5.13, does not properly perform authentication for HTTP requests, which allows remote attackers to modify system configuration via crafted requests, including changing the administrator password or causing a denial of service to the print server."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-10-18T14:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "ADV-2006-3401", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2006/3401"}, {"name": "19716", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/19716"}, {"name": "28250", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/28250"}, {"name": "21630", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/21630"}, {"name": "20060825 Indiana University Security Advisory: Fuji Xerox Printing Systems (FXPS) print engine vulnerabilitie", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://marc.info/?l=bugtraq&m=115652437223454&w=2"}, {"tags": ["x_refsource_MISC"], "url": "http://itso.iu.edu/20060824_FXPS_Print_Engine_Vulnerabilities"}, {"name": "20060825 Indiana University Security Advisory: Fuji Xerox Printing Systems (FXPS) print engine vulnerabilities", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/444321/100/0/threaded"}, {"name": "22463", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/22463"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2006-2113", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The embedded HTTP server in Fuji Xerox Printing Systems (FXPS) print engine, as used in products including (1) Dell 3000cn through 5110cn and (2) Fuji Xerox DocuPrint firmware before 20060628 and Network Option Card firmware before 5.13, does not properly perform authentication for HTTP requests, which allows remote attackers to modify system configuration via crafted requests, including changing the administrator password or causing a denial of service to the print server."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "ADV-2006-3401", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2006/3401"}, {"name": "19716", "refsource": "BID", "url": "http://www.securityfocus.com/bid/19716"}, {"name": "28250", "refsource": "OSVDB", "url": "http://www.osvdb.org/28250"}, {"name": "21630", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/21630"}, {"name": "20060825 Indiana University Security Advisory: Fuji Xerox Printing Systems (FXPS) print engine vulnerabilitie", "refsource": "BUGTRAQ", "url": "http://marc.info/?l=bugtraq&m=115652437223454&w=2"}, {"name": "http://itso.iu.edu/20060824_FXPS_Print_Engine_Vulnerabilities", "refsource": "MISC", "url": "http://itso.iu.edu/20060824_FXPS_Print_Engine_Vulnerabilities"}, {"name": "20060825 Indiana University Security Advisory: Fuji Xerox Printing Systems (FXPS) print engine vulnerabilities", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/444321/100/0/threaded"}, {"name": "22463", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/22463"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T17:35:31.490Z"}, "title": "CVE Program Container", "references": [{"name": "ADV-2006-3401", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2006/3401"}, {"name": "19716", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/19716"}, {"name": "28250", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/28250"}, {"name": "21630", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/21630"}, {"name": "20060825 Indiana University Security Advisory: Fuji Xerox Printing Systems (FXPS) print engine vulnerabilitie", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://marc.info/?l=bugtraq&m=115652437223454&w=2"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://itso.iu.edu/20060824_FXPS_Print_Engine_Vulnerabilities"}, {"name": "20060825 Indiana University Security Advisory: Fuji Xerox Printing Systems (FXPS) print engine vulnerabilities", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/444321/100/0/threaded"}, {"name": "22463", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/22463"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2006-2113", "datePublished": "2006-08-25T01:00:00", "dateReserved": "2006-05-01T00:00:00", "dateUpdated": "2024-08-07T17:35:31.490Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:h:dell:3000cn:*:*:*:*:*:*:*:*", "matchCriteriaId": "532844ED-5FC7-4E82-B952-329DF0633284", "vulnerable": true}, {"criteria": "cpe:2.3:h:dell:3010cn:*:*:*:*:*:*:*:*", "matchCriteriaId": "A989FB9D-2D1D-4E3B-931E-F07690973A42", "vulnerable": true}, {"criteria": "cpe:2.3:h:dell:3100cn:*:*:*:*:*:*:*:*", "matchCriteriaId": "22B029AC-DC1F-4E13-8920-B935400872BD", "vulnerable": true}, {"criteria": "cpe:2.3:h:dell:3110cn:*:*:*:*:*:*:*:*", "matchCriteriaId": "540F4B27-245A-48BD-9256-D998C0A2BD42", "vulnerable": true}, {"criteria": "cpe:2.3:h:dell:5100cn:*:*:*:*:*:*:*:*", "matchCriteriaId": "6A101A57-0EEF-4F38-A5D2-CBA609185183", "vulnerable": true}, {"criteria": "cpe:2.3:h:dell:5110cn:*:*:*:*:*:*:*:*", "matchCriteriaId": "60B111FC-9F91-40F1-99DB-06912966AC2F", "vulnerable": true}, {"criteria": "cpe:2.3:h:fuji_xerox:docuprint_181:*:*:*:*:*:*:*:*", "matchCriteriaId": "72A3031C-8F6A-4B4A-ABD0-D757BF273C1D", "vulnerable": true}, {"criteria": "cpe:2.3:h:fuji_xerox:docuprint_181_network_option_card:*:*:*:*:*:*:*:*", "matchCriteriaId": "45F323A9-A927-46CB-A5E3-CD15E19F5AB9", "vulnerable": true}, {"criteria": "cpe:2.3:h:fuji_xerox:docuprint_211:*:*:*:*:*:*:*:*", "matchCriteriaId": "F0B77692-BC61-4DA1-B663-DB94523D7737", "vulnerable": true}, {"criteria": "cpe:2.3:h:fuji_xerox:docuprint_211_network_option_card:*:*:*:*:*:*:*:*", "matchCriteriaId": "1F55AAD7-51CD-4E27-B371-054F8BA8D5F9", "vulnerable": true}, {"criteria": "cpe:2.3:h:fuji_xerox:docuprint_c1616:*:*:*:*:*:*:*:*", "matchCriteriaId": "690C64B8-73C5-44D5-9175-74E3A95AA582", "vulnerable": true}, {"criteria": "cpe:2.3:h:fuji_xerox:docuprint_c1616_network_option_card:*:*:*:*:*:*:*:*", "matchCriteriaId": "C451049F-4F93-4E56-B6D0-F20E9E6EEA1C", "vulnerable": true}, {"criteria": "cpe:2.3:h:fuji_xerox:docuprint_c2535a:*:*:*:*:*:*:*:*", "matchCriteriaId": "03B73A75-921E-4C95-8C23-CD948CB3272E", "vulnerable": true}, {"criteria": "cpe:2.3:h:fuji_xerox:docuprint_c525a:*:*:*:*:*:*:*:*", "matchCriteriaId": "DC4EA020-6728-4B85-9E62-E12394CD75E6", "vulnerable": true}, {"criteria": "cpe:2.3:h:fuji_xerox:docuprint_c525a_network_option_card:*:*:*:*:*:*:*:*", "matchCriteriaId": "7DE72B32-B190-4AE0-AF83-C46E6F4B1EE0", "vulnerable": true}, {"criteria": "cpe:2.3:h:fuji_xerox:docuprint_c830:*:*:*:*:*:*:*:*", "matchCriteriaId": "3EA7F17D-9E0A-447B-BCB6-A92EF808D8D9", "vulnerable": true}, {"criteria": "cpe:2.3:h:fuji_xerox:docuprint_c830_network_option_card:*:*:*:*:*:*:*:*", "matchCriteriaId": "A32B109E-96DB-47F4-BC71-CBA2A7BCF1BD", "vulnerable": true}, {"criteria": "cpe:2.3:h:fuji_xerox:fuji_xerox_printing_systems_print_engine:*:*:*:*:*:*:*:*", "matchCriteriaId": "EADEBB9E-0656-440A-B21F-C6896F46E929", "vulnerable": true}, {"criteria": "cpe:2.3:h:fuji_xerox:phaser_6201j:*:*:*:*:*:*:*:*", "matchCriteriaId": "E682A0CD-C660-48AE-BC60-C50115FC2114", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "The embedded HTTP server in Fuji Xerox Printing Systems (FXPS) print engine, as used in products including (1) Dell 3000cn through 5110cn and (2) Fuji Xerox DocuPrint firmware before 20060628 and Network Option Card firmware before 5.13, does not properly perform authentication for HTTP requests, which allows remote attackers to modify system configuration via crafted requests, including changing the administrator password or causing a denial of service to the print server."}, {"lang": "es", "value": "El servidor HTTP incrustado en el motor de impresi\u00f3n Fuji Xerox Printing Systems (FXPS), como se usa en productos incluyendo (1) Dell 3000cn hasta la versi\u00f3n 5110cn y (2) firmware Fuji Xerox DocuPrint en versiones anteriores a 20060628 y firmware Network Option Card en versiones anteriores a 5.13, no realiza correctamente autenticaci\u00f3n para peticiones HTTP, lo que permite a atacantes remotos modificar la configuraci\u00f3n del sistema a trav\u00e9s de peticiones manipuladas, incluyendo el cambio de la contrase\u00f1a de administrador o provocando una denegaci\u00f3n de servicio al servidor de impresi\u00f3n."}], "id": "CVE-2006-2113", "lastModified": "2024-11-21T00:10:35.373", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.4, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 4.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2006-08-25T01:04:00.000", "references": [{"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://itso.iu.edu/20060824_FXPS_Print_Engine_Vulnerabilities"}, {"source": "cve@mitre.org", "url": "http://marc.info/?l=bugtraq&m=115652437223454&w=2"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/21630"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/22463"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/28250"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/444321/100/0/threaded"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/19716"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://www.vupen.com/english/advisories/2006/3401"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "http://itso.iu.edu/20060824_FXPS_Print_Engine_Vulnerabilities"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://marc.info/?l=bugtraq&m=115652437223454&w=2"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://secunia.com/advisories/21630"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/22463"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.osvdb.org/28250"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/archive/1/444321/100/0/threaded"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/19716"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://www.vupen.com/english/advisories/2006/3401"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-287"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}