CVE-2013-6032
Summary
| CVE | CVE-2013-6032 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2014-02-04 05:39:00 UTC |
| Updated | 2014-02-04 15:29:00 UTC |
| Description | cgi-bin/postpf/cgi-bin/dynamic/config/config.html on Lexmark X94x before LC.BR.P142, X85x through LC4.BE.P487, X644 and X646 before LC2.MC.P374, X642 through LC2.MB.P318, W840 through LS.HA.P252, T64x before LS.ST.P344, X64xef through LC2.TI.P325, C935dn through LC.JO.P091, C920 through LS.TA.P152, C78x through LC.IO.P187, X78x through LC2.IO.P335, C77x through LC.CM.P052, X772 through LC2.TR.P291, C53x through LS.SW.P069, C52x through LS.FA.P150, 25xxN through LCL.CU.P114, N4000 through LC.MD.P119, N4050e through GO.GO.N206, N70xxe through LC.CO.N309, E450 through LM.SZ.P124, E350 through LE.PH.P129, and E250 through LE.PM.P126 printers allows remote attackers to remove the Password Protect administrative password via the vac.255.GENPASSWORD parameter. |
Risk And Classification
Problem Types: CWE-20
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Hardware | Lexmark | 25xxn | All | All | All | All |
| Hardware | Lexmark | C52x | All | All | All | All |
| Hardware | Lexmark | C53x | All | All | All | All |
| Hardware | Lexmark | C77x | All | All | All | All |
| Hardware | Lexmark | C78x | All | All | All | All |
| Hardware | Lexmark | C920 | All | All | All | All |
| Hardware | Lexmark | C935dn | All | All | All | All |
| Hardware | Lexmark | E250 | All | All | All | All |
| Hardware | Lexmark | E350 | All | All | All | All |
| Hardware | Lexmark | E450 | All | All | All | All |
| Hardware | Lexmark | N4000 | All | All | All | All |
| Hardware | Lexmark | N4050e | All | All | All | All |
| Hardware | Lexmark | N70xxe | All | All | All | All |
| Hardware | Lexmark | T64x | All | All | All | All |
| Hardware | Lexmark | W840 | All | All | All | All |
| Hardware | Lexmark | X642 | All | All | All | All |
| Hardware | Lexmark | X644 | All | All | All | All |
| Hardware | Lexmark | X646 | All | All | All | All |
| Hardware | Lexmark | X64xef | All | All | All | All |
| Hardware | Lexmark | X772 | All | All | All | All |
| Hardware | Lexmark | X78x | All | All | All | All |
| Hardware | Lexmark | X85x | All | All | All | All |
| Hardware | Lexmark | X94x | All | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Vulnerability Note VU#108062 - Lexmark laser printers contain multiple vulnerabilities | CERT-VN | www.kb.cert.org | US Government Resource |
| Lexmark Security Advisory | CONFIRM | support.lexmark.com | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.