The embedded HTTP server in multiple Lexmark laser and inkjet printers and MarkNet devices, including X94x, W840, T656, N4000, E462, C935dn, 25xxN, and other models, allows remote attackers to cause a denial of service (operating system halt) via a malformed HTTP Authorization header.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Complete

This CVE is not in the KEV list.

The EPSS score is 0.00491.

Key SSVC decision points have not yet been added.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions
n/a n/a affected
Version Status Constraints
n/a affected

Configuration 1 [-]

OR cpe:2.3:h:lexmark:25xxn:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:c510:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:c52x:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:c53x:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:c540:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:c543:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:c544:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:c546:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:c73x:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:c77x:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:c78x:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:c920:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:c935dn:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:e120:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:e238:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:e23x:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:e240:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:e240n:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:e250:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:e260:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:e33x:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:e34x:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:e350:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:e360d:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:e360dn:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:e450:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:e460:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:e462:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:n4000:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:n4050e:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:n70xxe:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:n8120:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:n8130:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:t430:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:t64x:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:t650:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:t652:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:t654:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:t656:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:w840:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:w850:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:x20x:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:x26x:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:x34x:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:x36x:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:x422:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:x46x:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:x543:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:x544:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:x546:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:x642:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:x644:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:x646:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:x64xef:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:x65x:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:x73x:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:x772e:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:x782e:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:x85x:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:x86x:*:*:*:*:*:*:*:*
cpe:2.3:h:lexmark:x94x:*:*:*:*:*:*:*:*

No data.

No data.

Project Subscriptions

Vendors Products
Lexmark Subscribe
25xxn Subscribe
C510 Subscribe
C52x Subscribe
C53x Subscribe
C540 Subscribe
C543 Subscribe
C544 Subscribe
C546 Subscribe
C73x Subscribe
C77x Subscribe
C78x Subscribe
C920 Subscribe
C935dn Subscribe
E120 Subscribe
E238 Subscribe
E23x Subscribe
E240 Subscribe
E240n Subscribe
E250 Subscribe
E260 Subscribe
E33x Subscribe
E34x Subscribe
E350 Subscribe
E360d Subscribe
E360dn Subscribe
E450 Subscribe
E460 Subscribe
E462 Subscribe
N4000 Subscribe
N4050e Subscribe
N70xxe Subscribe
N8120 Subscribe
N8130 Subscribe
T430 Subscribe
T64x Subscribe
T650 Subscribe
T652 Subscribe
T654 Subscribe
T656 Subscribe
W840 Subscribe
W850 Subscribe
X20x Subscribe
X26x Subscribe
X34x Subscribe
X36x Subscribe
X422 Subscribe
X46x Subscribe
X543 Subscribe
X544 Subscribe
X546 Subscribe
X642 Subscribe
X644 Subscribe
X646 Subscribe
X64xef Subscribe
X65x Subscribe
X73x Subscribe
X772e Subscribe
X782e Subscribe
X85x Subscribe
X86x Subscribe
X94x Subscribe
Advisories
Source ID Title
EUVD EUVD EUVD-2010-0133 The embedded HTTP server in multiple Lexmark laser and inkjet printers and MarkNet devices, including X94x, W840, T656, N4000, E462, C935dn, 25xxN, and other models, allows remote attackers to cause a denial of service (operating system halt) via a malformed HTTP Authorization header.
Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References
Link Providers
http://support.lexmark.com/index?page=content&id=TE87&locale=EN&userlocale=EN_US cve-icon cve-icon
History

No history.

Projects

Sign in to view the affected projects.

cve-icon MITRE

Status: PUBLISHED

Assigner: certcc

Published:

Updated: 2024-09-17T02:51:29.634Z

Reserved: 2009-12-30T00:00:00Z

Link: CVE-2010-0101

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Deferred

Published: 2010-05-04T16:00:35.230

Modified: 2025-04-11T00:51:21.963

Link: CVE-2010-0101

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.

Weaknesses