|
Family: Backdoors --> Category: infos
Xerox MicroServer Unauthorized Access Vulnerabilities Vulnerability Scan
Vulnerability Scan Summary Checks for unauthorized access vulnerabilities in Xerox MicroServer
Detailed Explanation for this Vulnerability Test
Synopsis :
The remote printer suffers from multiple unauthorized access
vulnerabilities.
Description :
According to its model number and software versions, the remote host
is a Xerox WorkCentre device with an embedded web server with an
unauthenticated account and a weakness in its SNMP authentication.
These flaws may allow a remote attacker to bypass authentication and
change the device's configuration.
See also :
http://www.xerox.com/downloads/usa/en/c/cert_XRX05_005.pdf
Solution :
Apply the P21 patch as described in the Xerox security bulletin.
Threat Level:
High / CVSS Base Score : 7
(AV:R/AC:L/Au:NR/C:P/A:P/I:P/B:N)
Click HERE for more information and discussions on this network vulnerability scan.
|