PT-2009-1906 · Xerox · Xerox Workcentre

Publicado

2009-03-06

Atualizado

2017-08-17

CVE-2008-6436

CVSS v2.0

4.3

Média

Vetor

AV:N/AC:M/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions: Xerox WorkCentre versions 7132, 7228, 7235, and 7245

Description: A cross-site scripting (XSS) issue exists in the Web Server, allowing remote attackers to inject arbitrary web script or HTML. This could potentially lead to unauthorized access or control of the web application.

Recommendations: For Xerox WorkCentre 7132, update to a version that addresses the XSS vulnerability. For Xerox WorkCentre 7228, update to a version that addresses the XSS vulnerability. For Xerox WorkCentre 7235, update to a version that addresses the XSS vulnerability. For Xerox WorkCentre 7245, update to a version that addresses the XSS vulnerability.

Correção

XSS

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-79

Identificadores relacionados

CVE-2008-6436

Produtos afetados

Xerox Workcentre

PT-2009-1906 · Xerox · Xerox Workcentre

CVE-2008-6436

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 7