Giuliano Fasto

**Name of the Vulnerable Software and Affected Versions** Fujifilm DocuCentre-VI C4471 version 1.8 **Description** A risky-algorithm issue allows an attacker with access to the administrative web interface to download the address book file, containing a list of users and their encrypted passwords. The passwords are protected by a weak cipher, such as ROT13, which can be easily decrypted to obtain valid domain or FTP usernames and passwords. **Recommendations** For Fujifilm DocuCentre-VI C4471 version 1.8, consider changing the default credentials and restricting access to the administrative web interface to minimize the risk of exploitation. Additionally, avoid using weak ciphers like ROT13 for password protection until a more secure alternative is implemented. At the moment, there is no information about a newer version that contains a fix for this vulnerability.