PT-2012-3156 · Toshiba Tec · Toshiba Tec E-Studio+1

Published

2012-04-06

Updated

2012-04-09

CVE-2012-1239

CVSS v2.0

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions TOSHIBA TEC e-Studio versions 30x through 302 TOSHIBA TEC e-Studio versions 35x through 354 TOSHIBA TEC e-Studio versions 4xx through 421

Description The issue allows remote attackers to bypass authentication and obtain administrative privileges on the TopAccess web-based management interface of TOSHIBA TEC e-Studio multi-function peripheral devices via unspecified vectors.

Recommendations For versions 30x through 302, update the firmware to a version that is not affected by this issue. For versions 35x through 354, update the firmware to a version that is not affected by this issue. For versions 4xx through 421, update the firmware to a version that is not affected by this issue.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-264

Related Identifiers

CVE-2012-1239

Affected Products

Toshiba Tec E-Studio

Topaccess

PT-2012-3156 · Toshiba Tec · Toshiba Tec E-Studio+1

CVE-2012-1239

Weakness Enumeration

Related Identifiers

Affected Products

References · 5