PT-2002-2558 · Xerox · Xerox Docutech

Published

2002-12-31

Updated

2008-09-05

CVE-2002-1836

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions Xerox DocuTech versions 6110 and 6115

Description The default configuration of the affected devices exports certain NFS shares to the world with world writable permissions. This may allow remote attackers to modify sensitive files.

Recommendations For Xerox DocuTech version 6110, restrict access to the exported NFS shares to prevent remote modification of sensitive files. For Xerox DocuTech version 6115, restrict access to the exported NFS shares to prevent remote modification of sensitive files.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2002-1836

Affected Products

Xerox Docutech

PT-2002-2558 · Xerox · Xerox Docutech

CVE-2002-1836

Related Identifiers

Affected Products

References · 6