Family: Misc. --> Category: infos
Xerox DocuCentre / WorkCentre Postscript Directory Traversal Vulnerability Vulnerability Scan
Vulnerability Scan Summary
Checks model number / software version of Xerox DocuCentre and WorkCentre devices
Detailed Explanation for this Vulnerability Test
The remote web server is prone to a directory traversal attack.
According to its model number and software versions, the remote host
is a Xerox Document Centre or WorkCentre device in which the
PostScript interpreter may allow unauthorized access to the underlying
directory structure. Using a specially crafted PostScript file, an
attacker can exploit this flaw and gain access to sensitive files on
the affected device, including its encrypted password file.
See also :
Apply the appropriate patches as described in the Xerox security
Low / CVSS Base Score : 3
Click HERE for more information and discussions on this network vulnerability scan.