OSVDB ID: 15747

Title: Xerox WorkCentre MicroServer Web Server SNMP System Config Modfiication

Info

Disclosure

Apr 21, 2005

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Unknown

Description

Xerox WorkCentre contains a flaw related to the microServer web server SNMP authentication that may allow remote attackers to modify system configuration. No further details have been provided.

Classification

Location: Remote/Network Access Required
Attack Type: Other
Impact: Loss of Availability
Exploit: Exploit Unavailable
Disclosure: OSVDB Verified

Solution

Currently, there are no known workarounds or upgrades to correct this issue. However, Xerox has released a patch to address this vulnerability.

Products

XEROX CORPORATION	WorkCentre Pro Color 2128/2636/3545	0.001.04.044
	WorkCentre M165/M175	6.47.33.008
	WorkCentre M165/M175	8.47.33.008
	WorkCentre 165/175	7.47.33.008
	WorkCentre M35/M45/M55	2.97.20.032
	WorkCentre M35/M45/M55	4.97.20.032
	WorkCentre Pro 65/75/90	1.001.02.084
	WorkCentre Pro 32/40 Color	0.001.02.081
	WorkCentre Pro 35/45/55	3.97.20.032

References

Security Tracker: 1013388
Bugtraq ID: 12731
Secunia Advisory ID: 14507
Related OSVDB ID: 14579
CVE ID: 2005-1179 (see also: NVD)
Vendor URL: http://www.office.xerox.com/perl-bin/response.pl?29668
Vendor Specific Advisory URL: http://www.xerox.com/downloads/usa/en/c/cert_XRX05_005.pdf

Credit

Unknown or Incomplete

Direct URL: http://osvdb.org/36218

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

XEROX CORPORATION

WorkCentre Pro Color 2128/2636/3545

WorkCentre M165/M175

WorkCentre 165/175

WorkCentre M35/M45/M55

WorkCentre Pro 65/75/90

WorkCentre Pro 32/40 Color

WorkCentre Pro 35/45/55

References

Credit