PT-2005-3537 · Xerox · Document Centre 490+8
Published
2005-08-21
·
Updated
2008-09-05
·
CVE-2005-2647
CVSS v2.0
4.3
Medium
| Vector | AV:N/AC:M/Au:N/C:N/I:P/A:N |
Name of the Vulnerable Software and Affected Versions
Xerox MicroServer Web Server versions in Document Centre 220 through 265
Xerox MicroServer Web Server versions in Document Centre 332 and 340
Xerox MicroServer Web Server versions in Document Centre 420 through 490
Xerox MicroServer Web Server versions in Document Centre 535 through 555
Description
The issue is related to a cross-site scripting (XSS) vulnerability, which allows remote attackers to inject arbitrary web script or HTML, thereby modifying web pages. The exact vectors used for the attack are not specified.
Recommendations
For versions in Document Centre 220 through 265, update to a version that includes a fix for this issue.
For versions in Document Centre 332 and 340, update to a version that includes a fix for this issue.
For versions in Document Centre 420 through 490, update to a version that includes a fix for this issue.
For versions in Document Centre 535 through 555, update to a version that includes a fix for this issue.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Document Centre 220
Document Centre 265
Document Centre 332
Document Centre 340
Document Centre 420
Document Centre 490
Document Centre 535
Document Centre 555
Xerox Microserver Web Server