CVE-2010-0618 - Vulnerability Details - OpenCVE

The flood-protection feature in the base, IPDS DLE, Forms DLE, Barcode DLE, Prescribe DLE, and Printcryption DLE components on certain Lexmark laser and inkjet printers and MarkNet devices allows remote attackers to cause a denial of service (TCP outage) by making many passive FTP connections and then aborting these connections.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

This CVE is not in the KEV list.

The EPSS score is 0.0073.

Key SSVC decision points have not yet been added.

Vendors	Products
Lexmark Subscribe	Z2420 Subscribe

Configuration 1 [-]

cpe:2.3:h:lexmark:z2420:*:*:*:*:*:*:*:*

No data.

No data.

Advisories

Source	ID	Title
EUVD	EUVD-2010-0649	The flood-protection feature in the base, IPDS DLE, Forms DLE, Barcode DLE, Prescribe DLE, and Printcryption DLE components on certain Lexmark laser and inkjet printers and MarkNet devices allows remote attackers to cause a denial of service (TCP outage) by making many passive FTP connections and then aborting these connections.

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References

Link	Providers
http://secunia.com/advisories/39056
http://support.lexmark.com/index?page=content&id=TE85&locale=EN&userlocale=EN_US
http://www.protekresearchlab.com/index.php?option=com_content&view=article&id=11&Itemid=11
http://www.securityfocus.com/archive/1/510285/100/0/threaded
http://www.securityfocus.com/bid/38906

History

No history.

Projects

Sign in to view the affected projects.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2010-03-24T18:00:00

Updated: 2024-08-07T00:52:19.442Z

Reserved: 2010-02-11T00:00:00

Link: CVE-2010-0618

Vulnrichment

No data.

NVD

Status : Deferred

Published: 2010-03-24T22:45:15.937

Modified: 2025-04-11T00:51:21.963

Link: CVE-2010-0618

Redhat

No data.

OpenCVE Enrichment

No data.

Weaknesses

NVD-CWE-Other

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2010-03-22T00:00:00", "descriptions": [{"lang": "en", "value": "The flood-protection feature in the base, IPDS DLE, Forms DLE, Barcode DLE, Prescribe DLE, and Printcryption DLE components on certain Lexmark laser and inkjet printers and MarkNet devices allows remote attackers to cause a denial of service (TCP outage) by making many passive FTP connections and then aborting these connections."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-10-10T18:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_MISC"], "url": "http://www.protekresearchlab.com/index.php?option=com_content&view=article&id=11&Itemid=11"}, {"name": "38906", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/38906"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://support.lexmark.com/index?page=content&id=TE85&locale=EN&userlocale=EN_US"}, {"name": "39056", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/39056"}, {"name": "20100322 {PRL} Lexmark Multiple Laser printer FTP Remote Denial of Services", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/510285/100/0/threaded"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2010-0618", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The flood-protection feature in the base, IPDS DLE, Forms DLE, Barcode DLE, Prescribe DLE, and Printcryption DLE components on certain Lexmark laser and inkjet printers and MarkNet devices allows remote attackers to cause a denial of service (TCP outage) by making many passive FTP connections and then aborting these connections."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "http://www.protekresearchlab.com/index.php?option=com_content&view=article&id=11&Itemid=11", "refsource": "MISC", "url": "http://www.protekresearchlab.com/index.php?option=com_content&view=article&id=11&Itemid=11"}, {"name": "38906", "refsource": "BID", "url": "http://www.securityfocus.com/bid/38906"}, {"name": "http://support.lexmark.com/index?page=content&id=TE85&locale=EN&userlocale=EN_US", "refsource": "CONFIRM", "url": "http://support.lexmark.com/index?page=content&id=TE85&locale=EN&userlocale=EN_US"}, {"name": "39056", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/39056"}, {"name": "20100322 {PRL} Lexmark Multiple Laser printer FTP Remote Denial of Services", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/510285/100/0/threaded"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T00:52:19.442Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://www.protekresearchlab.com/index.php?option=com_content&view=article&id=11&Itemid=11"}, {"name": "38906", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/38906"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://support.lexmark.com/index?page=content&id=TE85&locale=EN&userlocale=EN_US"}, {"name": "39056", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/39056"}, {"name": "20100322 {PRL} Lexmark Multiple Laser printer FTP Remote Denial of Services", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/510285/100/0/threaded"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2010-0618", "datePublished": "2010-03-24T18:00:00", "dateReserved": "2010-02-11T00:00:00", "dateUpdated": "2024-08-07T00:52:19.442Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:h:lexmark:z2420:*:*:*:*:*:*:*:*", "matchCriteriaId": "7D331850-E67A-4183-9598-0A54CCD9CB77", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "The flood-protection feature in the base, IPDS DLE, Forms DLE, Barcode DLE, Prescribe DLE, and Printcryption DLE components on certain Lexmark laser and inkjet printers and MarkNet devices allows remote attackers to cause a denial of service (TCP outage) by making many passive FTP connections and then aborting these connections."}, {"lang": "es", "value": "La caracter\u00edstica flood-protection en la base de los componentes IPDS DLE, Forms DLE, Barcode DLE, Prescribe DLE, y Printcryption DLE en determinadas impresoras multifunci\u00f3n o l\u00e1ser de la marca Lexmark, permite a atacantes remotos provocar una denegaci\u00f3n de servicio (indisponibilidad de TCP) a trav\u00e9s de varias conexiones FTP pasivas y posteriormente cancelando las conexiones."}], "evaluatorImpact": "Per: http://support.lexmark.com/index?page=content&id=TE85&locale=EN&userlocale=EN_US#Printcryption\r\n\r\n'Details\r\n\r\nLexmark products have connection flood protection mechanisms that limit the number of simultaneous network connections that can be made to the device on most TCP service ports.\r\n\r\n(21/FTP 79/Finger, 515/LPD, 631/IPP, 5001, 9100-9104, 9200, 9300, 9400, 9500-9501 & 9600)\r\n\r\nThe FTP service exception handler does not properly maintain the state of the flood protection when passive FTP connections are aborted. Once a sufficient number of passive FTP connections have timed out (typically 15), the flood protection is enabled and is never reset.\r\n\r\nThe flood protection can be reset by resetting the network adapter, or by power cycling the device.\r\n\r\nThe firmware update that resolves this vulnerability automatically resets the flood protection after the \u201cNetwork Job Timeout\u201d has expired or 90 seconds if the \u201cNetwork Job Timeout\u201d is disabled.'", "id": "CVE-2010-0618", "lastModified": "2025-04-11T00:51:21.963", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2010-03-24T22:45:15.937", "references": [{"source": "cve@mitre.org", "url": "http://secunia.com/advisories/39056"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://support.lexmark.com/index?page=content&id=TE85&locale=EN&userlocale=EN_US"}, {"source": "cve@mitre.org", "url": "http://www.protekresearchlab.com/index.php?option=com_content&view=article&id=11&Itemid=11"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/510285/100/0/threaded"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/38906"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://secunia.com/advisories/39056"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://support.lexmark.com/index?page=content&id=TE85&locale=EN&userlocale=EN_US"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.protekresearchlab.com/index.php?option=com_content&view=article&id=11&Itemid=11"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/archive/1/510285/100/0/threaded"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/38906"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}