CVE-2006-2113

Summary

CVE	CVE-2006-2113
State	PUBLIC
Assigner	[email protected]
Source Priority	CVE Program / NVD first with legacy fallback
Published	2006-08-25 01:04:00 UTC
Updated	2018-10-18 16:38:00 UTC
Description	The embedded HTTP server in Fuji Xerox Printing Systems (FXPS) print engine, as used in products including (1) Dell 3000cn through 5110cn and (2) Fuji Xerox DocuPrint firmware before 20060628 and Network Option Card firmware before 5.13, does not properly perform authentication for HTTP requests, which allows remote attackers to modify system configuration via crafted requests, including changing the administrator password or causing a denial of service to the print server.

Risk And Classification

Problem Types: CWE-287

NVD Known Affected Configurations (CPE 2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Hardware	Dell	3000cn	All	All	All	All
Hardware	Dell	3000cn	All	All	All	All
Hardware	Dell	3010cn	All	All	All	All
Hardware	Dell	3010cn	All	All	All	All
Hardware	Dell	3100cn	All	All	All	All
Hardware	Dell	3100cn	All	All	All	All
Hardware	Dell	3110cn	All	All	All	All
Hardware	Dell	3110cn	All	All	All	All
Hardware	Dell	5100cn	All	All	All	All
Hardware	Dell	5100cn	All	All	All	All
Hardware	Dell	5110cn	All	All	All	All
Hardware	Dell	5110cn	All	All	All	All
Hardware	Fuji Xerox	Docuprint 181	All	All	All	All
Hardware	Fuji Xerox	Docuprint 181	All	All	All	All
Hardware	Fuji Xerox	Docuprint 181 Network Option Card	All	All	All	All
Hardware	Fuji Xerox	Docuprint 181 Network Option Card	All	All	All	All
Hardware	Fuji Xerox	Docuprint 211	All	All	All	All
Hardware	Fuji Xerox	Docuprint 211	All	All	All	All
Hardware	Fuji Xerox	Docuprint 211 Network Option Card	All	All	All	All
Hardware	Fuji Xerox	Docuprint 211 Network Option Card	All	All	All	All
Hardware	Fuji Xerox	Docuprint C1616	All	All	All	All
Hardware	Fuji Xerox	Docuprint C1616	All	All	All	All
Hardware	Fuji Xerox	Docuprint C1616 Network Option Card	All	All	All	All
Hardware	Fuji Xerox	Docuprint C1616 Network Option Card	All	All	All	All
Hardware	Fuji Xerox	Docuprint C2535a	All	All	All	All
Hardware	Fuji Xerox	Docuprint C2535a	All	All	All	All
Hardware	Fuji Xerox	Docuprint C525a	All	All	All	All
Hardware	Fuji Xerox	Docuprint C525a	All	All	All	All
Hardware	Fuji Xerox	Docuprint C525a Network Option Card	All	All	All	All
Hardware	Fuji Xerox	Docuprint C525a Network Option Card	All	All	All	All
Hardware	Fuji Xerox	Docuprint C830	All	All	All	All
Hardware	Fuji Xerox	Docuprint C830	All	All	All	All
Hardware	Fuji Xerox	Docuprint C830 Network Option Card	All	All	All	All
Hardware	Fuji Xerox	Docuprint C830 Network Option Card	All	All	All	All
Hardware	Fuji Xerox	Fuji Xerox Printing Systems Print Engine	All	All	All	All
Hardware	Fuji Xerox	Fuji Xerox Printing Systems Print Engine	All	All	All	All
Hardware	Fuji Xerox	Phaser 6201j	All	All	All	All
Hardware	Fuji Xerox	Phaser 6201j	All	All	All	All

References

Reference	Source	Link	Tags
Webmail : Solution de messagerie professionnelle - OVHcloud- OVH	VUPEN	www.vupen.com	Vendor Advisory
'Indiana University Security Advisory: Fuji Xerox Printing Systems (FXPS) print engine vulnerabilitie' - MARC	BUGTRAQ	marc.info
SecurityFocus	BUGTRAQ	www.securityfocus.com
28250	OSVDB	www.osvdb.org
Dell Color Laser Printers Multiple Vulnerabilities - Advisories - Secunia	SECUNIA	secunia.com
Fuji Xerox Printing Systems Embedded HTTP Server Multiple Vulnerabilities	BID	www.securityfocus.com
ITSO: 20060824 FXPS Print Engine Vulnerabilities	MISC	itso.iu.edu	Patch
Fuji Xerox DocuPrint Multiple Vulnerabilities - Advisories - Secunia	SECUNIA	secunia.com	Vendor Advisory
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

No vendor comments have been submitted for this CVE.

There are currently no legacy QID mappings associated with this CVE.