|
Family: CGI abuses --> Category: infos
Fuji Xerox Printing Systems Authentication Bypass Vulnerability Vulnerability Scan
Vulnerability Scan Summary Gets version of remote printer
Detailed Explanation for this Vulnerability Test
Synopsis :
The remote web server is affected by an authentication bypass isssue.
Description :
The remote host appears to be a Fuji Xerox Printing Systems (FXPS)
printer.
According to its firmware version, the web server component of the
FXPS device reportedly fails to authenticate HTTP requests, which may
allow a remote attacker to gain administrative control of the affected
printer and make unauthorized changes to it, including denying service
to legitimate users.
See also :
https://itso.iu.edu/20060824_FXPS_Print_Engine_Vulnerabilities
http://www.securityfocus.com/archive/1/444321/30/0/threaded
Solution :
Apply the appropriate patch as referenced in the advisory.
Threat Level:
Medium / CVSS Base Score : 4.7
(AV:R/AC:L/Au:NR/C:N/I:P/A:P/B:N)
Click HERE for more information and discussions on this network vulnerability scan.
|