PT-2006-7077 · Xerox · Workcentre Pro+1

Published

2006-12-11

Updated

2008-09-05

CVE-2006-6468

CVSS v2.0

5.8

Medium

Vector

AV:A/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Xerox WorkCentre and WorkCentre Pro versions prior to 12.050.03.000 Xerox WorkCentre and WorkCentre Pro versions 13.x prior to 13.050.03.000 Xerox WorkCentre and WorkCentre Pro versions 14.x prior to 14.050.03.000

Description The issue is related to the validation of the Fully Qualified Domain Name (FQDN) during a "Validate Repository SSL Certificate" scan. This might allow for spoofed certificates, potentially impacting the security of the system. The exact attack vectors and impact are not specified.

Recommendations For versions prior to 12.050.03.000, update to version 12.050.03.000 or later. For versions 13.x prior to 13.050.03.000, update to version 13.050.03.000 or later. For versions 14.x prior to 14.050.03.000, update to version 14.050.03.000 or later.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2006-6468

Affected Products

Workcentre

Workcentre Pro

PT-2006-7077 · Xerox · Workcentre Pro+1

CVE-2006-6468

Related Identifiers

Affected Products

References · 3