Vulnerability-Lookup

CVE-2006-2113 (GCVE-0-2006-2113)

Vulnerability from cvelistv5 – Published: 2006-08-25 01:00 – Updated: 2024-08-07 17:35

Summary

Severity ?

No CVSS data available.

CWE

Assigner

mitre

References

URL

FKIE_CVE-2006-2113

Vulnerability from fkie_nvd - Published: 2006-08-25 01:04 - Updated: 2025-04-03 01:03

Severity ?

Summary

References

URL	Tags
cve@mitre.org	http://itso.iu.edu/20060824_FXPS_Print_Engine_Vulnerabilities	Patch
cve@mitre.org	http://marc.info/?l=bugtraq&m=115652437223454&w=2
cve@mitre.org	http://secunia.com/advisories/21630
cve@mitre.org	http://secunia.com/advisories/22463	Vendor Advisory
cve@mitre.org	http://www.osvdb.org/28250
cve@mitre.org	http://www.securityfocus.com/archive/1/444321/100/0/threaded
cve@mitre.org	http://www.securityfocus.com/bid/19716
cve@mitre.org	http://www.vupen.com/english/advisories/2006/3401	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://itso.iu.edu/20060824_FXPS_Print_Engine_Vulnerabilities	Patch
af854a3a-2127-422b-91ae-364da2661108	http://marc.info/?l=bugtraq&m=115652437223454&w=2
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/21630
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/22463	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.osvdb.org/28250
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/archive/1/444321/100/0/threaded
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/19716
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2006/3401	Vendor Advisory

Impacted products

Vendor	Product	Version
dell	3000cn	*
dell	3010cn	*
dell	3100cn	*
dell	3110cn	*
dell	5100cn	*
dell	5110cn	*
fuji_xerox	docuprint_181	*
fuji_xerox	docuprint_181_network_option_card	*
fuji_xerox	docuprint_211	*
fuji_xerox	docuprint_211_network_option_card	*
fuji_xerox	docuprint_c1616	*
fuji_xerox	docuprint_c1616_network_option_card	*
fuji_xerox	docuprint_c2535a	*
fuji_xerox	docuprint_c525a	*
fuji_xerox	docuprint_c525a_network_option_card	*
fuji_xerox	docuprint_c830	*
fuji_xerox	docuprint_c830_network_option_card	*
fuji_xerox	fuji_xerox_printing_systems_print_engine	*
fuji_xerox	phaser_6201j	*

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:dell:3000cn:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "532844ED-5FC7-4E82-B952-329DF0633284",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:dell:3010cn:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "A989FB9D-2D1D-4E3B-931E-F07690973A42",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:dell:3100cn:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "22B029AC-DC1F-4E13-8920-B935400872BD",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:dell:3110cn:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "540F4B27-245A-48BD-9256-D998C0A2BD42",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:dell:5100cn:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "6A101A57-0EEF-4F38-A5D2-CBA609185183",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:dell:5110cn:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "60B111FC-9F91-40F1-99DB-06912966AC2F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:fuji_xerox:docuprint_181:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "72A3031C-8F6A-4B4A-ABD0-D757BF273C1D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:fuji_xerox:docuprint_181_network_option_card:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "45F323A9-A927-46CB-A5E3-CD15E19F5AB9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:fuji_xerox:docuprint_211:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "F0B77692-BC61-4DA1-B663-DB94523D7737",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:fuji_xerox:docuprint_211_network_option_card:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "1F55AAD7-51CD-4E27-B371-054F8BA8D5F9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:fuji_xerox:docuprint_c1616:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "690C64B8-73C5-44D5-9175-74E3A95AA582",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:fuji_xerox:docuprint_c1616_network_option_card:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "C451049F-4F93-4E56-B6D0-F20E9E6EEA1C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:fuji_xerox:docuprint_c2535a:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "03B73A75-921E-4C95-8C23-CD948CB3272E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:fuji_xerox:docuprint_c525a:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "DC4EA020-6728-4B85-9E62-E12394CD75E6",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:fuji_xerox:docuprint_c525a_network_option_card:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "7DE72B32-B190-4AE0-AF83-C46E6F4B1EE0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:fuji_xerox:docuprint_c830:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "3EA7F17D-9E0A-447B-BCB6-A92EF808D8D9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:fuji_xerox:docuprint_c830_network_option_card:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "A32B109E-96DB-47F4-BC71-CBA2A7BCF1BD",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:fuji_xerox:fuji_xerox_printing_systems_print_engine:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "EADEBB9E-0656-440A-B21F-C6896F46E929",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:fuji_xerox:phaser_6201j:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "E682A0CD-C660-48AE-BC60-C50115FC2114",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "The embedded HTTP server in Fuji Xerox Printing Systems (FXPS) print engine, as used in products including (1) Dell 3000cn through 5110cn and (2) Fuji Xerox DocuPrint firmware before 20060628 and Network Option Card firmware before 5.13, does not properly perform authentication for HTTP requests, which allows remote attackers to modify system configuration via crafted requests, including changing the administrator password or causing a denial of service to the print server."
    },
    {
      "lang": "es",
      "value": "El servidor HTTP incrustado en el motor de impresi\u00f3n Fuji Xerox Printing Systems (FXPS), como se usa en productos incluyendo (1) Dell 3000cn hasta la versi\u00f3n 5110cn y (2) firmware Fuji Xerox DocuPrint en versiones anteriores a 20060628 y firmware Network Option Card en versiones anteriores a 5.13, no realiza correctamente autenticaci\u00f3n para peticiones HTTP, lo que permite a atacantes remotos modificar la configuraci\u00f3n del sistema a trav\u00e9s de peticiones manipuladas, incluyendo el cambio de la contrase\u00f1a de administrador o provocando una denegaci\u00f3n de servicio al servidor de impresi\u00f3n."
    }
  ],
  "id": "CVE-2006-2113",
  "lastModified": "2025-04-03T01:03:51.193",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 6.4,
          "confidentialityImpact": "NONE",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 4.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2006-08-25T01:04:00.000",
  "references": [
    {
      "source": "cve@mitre.org",
      "tags": [
        "Patch"
      ],
      "url": "http://itso.iu.edu/20060824_FXPS_Print_Engine_Vulnerabilities"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://marc.info/?l=bugtraq\u0026m=115652437223454\u0026w=2"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/21630"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/22463"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.osvdb.org/28250"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securityfocus.com/archive/1/444321/100/0/threaded"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securityfocus.com/bid/19716"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www.vupen.com/english/advisories/2006/3401"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch"
      ],
      "url": "http://itso.iu.edu/20060824_FXPS_Print_Engine_Vulnerabilities"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://marc.info/?l=bugtraq\u0026m=115652437223454\u0026w=2"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/21630"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/22463"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.osvdb.org/28250"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/archive/1/444321/100/0/threaded"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/19716"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www.vupen.com/english/advisories/2006/3401"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-287"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

CERTA-2006-AVI-380

Vulnerability from certfr_avis - Published: 2006-08-31 - Updated: 2006-08-31

None

Description

Deux vulnérabilités ont été découvertes dans certaines imprimantes laser couleur Dell :

A cause d'une trop grande permissivité dans la commande PORT, le serveur FTP embarqué peut être utilisé comme rebond pour se connecter sur des systèmes tiers ;
le serveur HTTP embarqué ne demande pas d'authentification pour accéder à la page d'administration de l'imprimante.

Solution

Appliquer les correctifs fournis par l'éditeur (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
N/A	N/A	Dell Color Laser Printer 3100cn
N/A	N/A	Dell Color Laser Printer 5100cn
N/A	N/A	Dell Color Laser Printer 3110cn
N/A	N/A	Dell Color Laser Printer 3000cn
N/A	N/A	Dell Color Laser Printer 5110cn
N/A	N/A	Dell Color Laser Printer 3010cn

References

Title

Publication Time

GHSA-FJRM-V8HG-F6JJ

Vulnerability from github – Published: 2022-05-01 06:55 – Updated: 2022-05-01 06:55

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2006-2113"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-287"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2006-08-25T01:04:00Z",
    "severity": "MODERATE"
  },
  "details": "The embedded HTTP server in Fuji Xerox Printing Systems (FXPS) print engine, as used in products including (1) Dell 3000cn through 5110cn and (2) Fuji Xerox DocuPrint firmware before 20060628 and Network Option Card firmware before 5.13, does not properly perform authentication for HTTP requests, which allows remote attackers to modify system configuration via crafted requests, including changing the administrator password or causing a denial of service to the print server.",
  "id": "GHSA-fjrm-v8hg-f6jj",
  "modified": "2022-05-01T06:55:49Z",
  "published": "2022-05-01T06:55:49Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2006-2113"
    },
    {
      "type": "WEB",
      "url": "http://itso.iu.edu/20060824_FXPS_Print_Engine_Vulnerabilities"
    },
    {
      "type": "WEB",
      "url": "http://marc.info/?l=bugtraq\u0026m=115652437223454\u0026w=2"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/21630"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/22463"
    },
    {
      "type": "WEB",
      "url": "http://www.osvdb.org/28250"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/archive/1/444321/100/0/threaded"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/19716"
    },
    {
      "type": "WEB",
      "url": "http://www.vupen.com/english/advisories/2006/3401"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

VAR-200608-0046

Vulnerability from variot - Updated: 2025-04-03 22:25

The embedded HTTP server in Fuji Xerox Printing Systems (FXPS) print engine, as used in products including (1) Dell 3000cn through 5110cn and (2) Fuji Xerox DocuPrint firmware before 20060628 and Network Option Card firmware before 5.13, does not properly perform authentication for HTTP requests, which allows remote attackers to modify system configuration via crafted requests, including changing the administrator password or causing a denial of service to the print server. These issues occur because the application fails to properly validate HTTP requests. An attacker can exploit these issues to bypass authentication and gain administrative access to the affected embedded application or to cause denial-of-service conditions. This may lead to other attacks.

Want to work within IT-Security?

Secunia is expanding its team of highly skilled security experts. We will help with relocation and obtaining a work permit.

Currently the following type of positions are available: http://secunia.com/quality_assurance_analyst/ http://secunia.com/web_application_security_specialist/ http://secunia.com/hardcore_disassembler_and_reverse_engineer/

TITLE: Dell Color Laser Printers Multiple Vulnerabilities

SECUNIA ADVISORY ID: SA21630

VERIFY ADVISORY: http://secunia.com/advisories/21630/

CRITICAL: Less critical

IMPACT: Security Bypass, DoS

WHERE:

From local network

OPERATING SYSTEM: Dell Color Laser Printer 5110cn http://secunia.com/product/11721/ Dell Color Laser Printer 5100cn http://secunia.com/product/11733/ Dell Color Laser Printer 3110cn http://secunia.com/product/11734/ Dell Color Laser Printer 3100cn http://secunia.com/product/11736/ Dell Color Laser Printer 3010cn http://secunia.com/product/11735/ Dell Color Laser Printer 3000cn http://secunia.com/product/11737/

DESCRIPTION: Some vulnerabilities have been reported in various Dell Color Laser Printers, which can be exploited by malicious people to bypass certain security restrictions or to cause a DoS (Denial of Service).

1) The embedded FTP server does not restrict the use of the FTP PORT command. This can be exploited to connect to arbitrary systems through the FTP server. This can be exploited to make unauthorized changes to the system configuration or to cause a DoS.

The vulnerability has been reported in Dell 5110cn, Dell 3110cn, and Dell 3010cn with firmware versions prior to A01 and in Dell 5100cn, Dell 3100cn, and Dell 3000cn with firmware versions prior to A05.

NOTE: Other products using the Fuji Xerox Printing Engine may also be affected.

SOLUTION: Apply patches.

Dell 5110cn (firmware versions prior to A01): http://ftp.us.dell.com/printer/R130538.EXE

Dell 3110cn (firmware versions prior to A01): http://ftp.us.dell.com/printer/R130356.EXE

Dell 3010cn (firmware versions prior to A01): http://ftp.us.dell.com/printer/R132075.EXE

Dell 5100cn (firmware versions prior to A05): http://ftp.us.dell.com/printer/R132718.EXE

Dell 3100cn (firmware versions prior to A05): http://ftp.us.dell.com/printer/R132079.EXE

Dell 3000cn (firmware versions prior to A05): http://ftp.us.dell.com/printer/R132368.EXE

PROVIDED AND/OR DISCOVERED BY: Nate Johnson and Sean Krulewitch, Indiana University.

ORIGINAL ADVISORY: https://itso.iu.edu/20060824_FXPS_Print_Engine_Vulnerabilities

About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities.

Subscribe: http://secunia.com/secunia_security_advisories/

Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/

Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor.

Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org

PROVIDED AND/OR DISCOVERED BY: Nate Johnson and Sean Krulewitch, Indiana University. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1

Indiana University Security Advisory: Fuji Xerox Printing Systems (FXPS)[1] print engine vulnerabilities

Advisory ID: 20060824_FXPS_Print_Engine_Vulnerabilities[2]

Revisions: 08-24-2006 2350 UTC 1.0 Initial Public Release

Issues: FTP bounce attack is possible when FTP printing is enabled (CVE-2006-2112)[3]

Embedded HTTP server allows unauthenticated access to system configuration and settings (CVE-2006-2113)[4]

Credit/acknowledgement: CVE-2006-2112 Date of discovery: 04-11-2006 Nate Johnson, Lead Security Engineer, Indiana University Sean Krulewitch, Deputy IT Security Officer, Indiana University

CVE-2006-2113 Date of discovery: 04-11-2006 Sean Krulewitch, Deputy IT Security Officer, Indiana University

Summary: Certain FXPS print engines contain vulnerabilities that allow a remote attacker to perform FTP bounce attacks through the FTP printing interface or allow unauthenticated access to the embedded HTTP remote user interface. This allows an attacker to cause the FTP server to make arbitrary connections to ports on another system, which can be used to bypass access controls and hide the the true identity of the source of the attacker's traffic. A successful attacker would be able to reset the administrator password but would not be capable of exposing the current password.

Mitigation/workarounds: Disabling FTP printing prevents the FTP bounce attack. Disabling the embedded web server prevents the DoS/unauthorized configuration change attack. Best practice suggests that access controls and network firewall policies be put into place to only allow connections from trusted machines and networks.

Criticality: These vulnerabilities have a combined risk of moderately critical.

Footnotes: [1] http://www.fxpsc.co.jp/en/ [2] https://itso.iu.edu/20060824_FXPS_Print_Engine_Vulnerabilities [3] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2112 [4] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2113 [5] http://ftp.us.dell.com/printer/R130538.EXE [6] http://ftp.us.dell.com/printer/R130356.EXE [7] http://ftp.us.dell.com/printer/R132075.EXE [8] http://ftp.us.dell.com/printer/R132718.EXE [9] http://ftp.us.dell.com/printer/R132079.EXE [10] http://ftp.us.dell.com/printer/R132368.EXE

Sean Krulewitch, Deputy IT Security Officer IT Security Office, Office of the VP for Information Technology Indiana University For PGP Key or S/MIME cert: https://www.itso.iu.edu/Sean_Krulewitch

-----BEGIN PGP SIGNATURE----- Version: PGP Desktop 9.0.6 (Build 6060)

iQA/AwUBRO46FTOEdAVfeKEbEQKc+ACeNvyfI5+GXspTdx32rSxH+WHfXW8AoKPe AJYb0WM59jddPs4cSXaZOyQq =Y7Kv -----END PGP SIGNATURE-----

Show details on source website

JSON

To clipboard

{
  "@context": {
    "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
    "affected_products": {
      "@id": "https://www.variotdbs.pl/ref/affected_products"
    },
    "configurations": {
      "@id": "https://www.variotdbs.pl/ref/configurations"
    },
    "credits": {
      "@id": "https://www.variotdbs.pl/ref/credits"
    },
    "cvss": {
      "@id": "https://www.variotdbs.pl/ref/cvss/"
    },
    "description": {
      "@id": "https://www.variotdbs.pl/ref/description/"
    },
    "exploit_availability": {
      "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
    },
    "external_ids": {
      "@id": "https://www.variotdbs.pl/ref/external_ids/"
    },
    "iot": {
      "@id": "https://www.variotdbs.pl/ref/iot/"
    },
    "iot_taxonomy": {
      "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
    },
    "patch": {
      "@id": "https://www.variotdbs.pl/ref/patch/"
    },
    "problemtype_data": {
      "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
    },
    "references": {
      "@id": "https://www.variotdbs.pl/ref/references/"
    },
    "sources": {
      "@id": "https://www.variotdbs.pl/ref/sources/"
    },
    "sources_release_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
    },
    "sources_update_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
    },
    "threat_type": {
      "@id": "https://www.variotdbs.pl/ref/threat_type/"
    },
    "title": {
      "@id": "https://www.variotdbs.pl/ref/title/"
    },
    "type": {
      "@id": "https://www.variotdbs.pl/ref/type/"
    }
  },
  "@id": "https://www.variotdbs.pl/vuln/VAR-200608-0046",
  "affected_products": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "model": "3010cn",
        "scope": null,
        "trust": 1.4,
        "vendor": "dell",
        "version": null
      },
      {
        "model": "3100cn",
        "scope": null,
        "trust": 1.4,
        "vendor": "dell",
        "version": null
      },
      {
        "model": "3110cn",
        "scope": null,
        "trust": 1.4,
        "vendor": "dell",
        "version": null
      },
      {
        "model": "5100cn",
        "scope": null,
        "trust": 1.4,
        "vendor": "dell",
        "version": null
      },
      {
        "model": "5110cn",
        "scope": null,
        "trust": 1.4,
        "vendor": "dell",
        "version": null
      },
      {
        "model": "5100cn",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "dell",
        "version": "*"
      },
      {
        "model": "docuprint c830 network option card",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "fuji xerox",
        "version": "*"
      },
      {
        "model": "docuprint 211",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "fuji xerox",
        "version": "*"
      },
      {
        "model": "phaser 6201j",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "fuji xerox",
        "version": "*"
      },
      {
        "model": "docuprint 181 network option card",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "fuji xerox",
        "version": "*"
      },
      {
        "model": "docuprint c525a network option card",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "fuji xerox",
        "version": "*"
      },
      {
        "model": "3110cn",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "dell",
        "version": "*"
      },
      {
        "model": "docuprint 181",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "fuji xerox",
        "version": "*"
      },
      {
        "model": "docuprint c1616 network option card",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "fuji xerox",
        "version": "*"
      },
      {
        "model": "docuprint c830",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "fuji xerox",
        "version": "*"
      },
      {
        "model": "docuprint 211 network option card",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "fuji xerox",
        "version": "*"
      },
      {
        "model": "3010cn",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "dell",
        "version": "*"
      },
      {
        "model": "5110cn",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "dell",
        "version": "*"
      },
      {
        "model": "printing systems print engine",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "fuji xerox",
        "version": "*"
      },
      {
        "model": "docuprint c525a",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "fuji xerox",
        "version": "*"
      },
      {
        "model": "3000cn",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "dell",
        "version": "*"
      },
      {
        "model": "docuprint c1616",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "fuji xerox",
        "version": "*"
      },
      {
        "model": "docuprint c2535a",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "fuji xerox",
        "version": "*"
      },
      {
        "model": "3100cn",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "dell",
        "version": "*"
      },
      {
        "model": "3000cn",
        "scope": null,
        "trust": 0.8,
        "vendor": "dell",
        "version": null
      },
      {
        "model": "docuprint",
        "scope": "lt",
        "trust": 0.8,
        "vendor": "fuji xerox",
        "version": "firmware 20060628"
      },
      {
        "model": "docuprint",
        "scope": "lt",
        "trust": 0.8,
        "vendor": "fuji xerox",
        "version": "and  network option card firmware 5.13"
      },
      {
        "model": "xerox printing systems co. phaser 6201j",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "fuji",
        "version": "0"
      },
      {
        "model": "xerox printing systems co. fxps print engine",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "fuji",
        "version": "0"
      },
      {
        "model": "xerox printing systems co. docuprint c830 network option card",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "fuji",
        "version": "0"
      },
      {
        "model": "xerox printing systems co. docuprint c830",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "fuji",
        "version": "0"
      },
      {
        "model": "xerox printing systems co. docuprint c525a network option card",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "fuji",
        "version": "0"
      },
      {
        "model": "xerox printing systems co. docuprint c525a",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "fuji",
        "version": "0"
      },
      {
        "model": "xerox printing systems co. docuprint c2535a",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "fuji",
        "version": "0"
      },
      {
        "model": "xerox printing systems co. docuprint c1616 network option card",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "fuji",
        "version": "0"
      },
      {
        "model": "xerox printing systems co. docuprint c1616",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "fuji",
        "version": "0"
      },
      {
        "model": "xerox printing systems co. docuprint network option card",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "fuji",
        "version": "2110"
      },
      {
        "model": "xerox printing systems co. docuprint",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "fuji",
        "version": "2110"
      },
      {
        "model": "xerox printing systems co. docuprint network option card",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "fuji",
        "version": "1810"
      },
      {
        "model": "xerox printing systems co. docuprint",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "fuji",
        "version": "1810"
      },
      {
        "model": "5110cn",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "dell",
        "version": "0"
      },
      {
        "model": "5100cn",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "dell",
        "version": "0"
      },
      {
        "model": "3110cn",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "dell",
        "version": "0"
      },
      {
        "model": "3100cn",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "dell",
        "version": "0"
      },
      {
        "model": "3010cn",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "dell",
        "version": "0"
      },
      {
        "model": "3000cn",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "dell",
        "version": "0"
      },
      {
        "model": "xerox printing systems co. phaser 6201j",
        "scope": "ne",
        "trust": 0.3,
        "vendor": "fuji",
        "version": "5.13"
      },
      {
        "model": "xerox printing systems co. docuprint c830 network option card",
        "scope": "ne",
        "trust": 0.3,
        "vendor": "fuji",
        "version": "5.13"
      },
      {
        "model": "xerox printing systems co. docuprint c525a network option card",
        "scope": "ne",
        "trust": 0.3,
        "vendor": "fuji",
        "version": "8.17"
      },
      {
        "model": "xerox printing systems co. docuprint c1616 network option card",
        "scope": "ne",
        "trust": 0.3,
        "vendor": "fuji",
        "version": "5.13"
      },
      {
        "model": "xerox printing systems co. docuprint network option card",
        "scope": "ne",
        "trust": 0.3,
        "vendor": "fuji",
        "version": "2115.13"
      },
      {
        "model": "xerox printing systems co. docuprint network option card",
        "scope": "ne",
        "trust": 0.3,
        "vendor": "fuji",
        "version": "1815.13"
      },
      {
        "model": "5110cn a01",
        "scope": "ne",
        "trust": 0.3,
        "vendor": "dell",
        "version": null
      },
      {
        "model": "5100cn a05",
        "scope": "ne",
        "trust": 0.3,
        "vendor": "dell",
        "version": null
      },
      {
        "model": "3110cn a01",
        "scope": "ne",
        "trust": 0.3,
        "vendor": "dell",
        "version": null
      },
      {
        "model": "3100cn a05",
        "scope": "ne",
        "trust": 0.3,
        "vendor": "dell",
        "version": null
      },
      {
        "model": "3010cn a01",
        "scope": "ne",
        "trust": 0.3,
        "vendor": "dell",
        "version": null
      },
      {
        "model": "3000cn a05",
        "scope": "ne",
        "trust": 0.3,
        "vendor": "dell",
        "version": null
      }
    ],
    "sources": [
      {
        "db": "BID",
        "id": "19716"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2006-001008"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200608-400"
      },
      {
        "db": "NVD",
        "id": "CVE-2006-2113"
      }
    ]
  },
  "configurations": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/configurations#",
      "children": {
        "@container": "@list"
      },
      "cpe_match": {
        "@container": "@list"
      },
      "data": {
        "@container": "@list"
      },
      "nodes": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "cpe_match": [
              {
                "cpe22Uri": "cpe:/h:dell:3000cn",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/h:dell:3010cn",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/h:dell:3100cn",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/h:dell:3110cn",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/h:dell:5100cn",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/h:dell:5110cn",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/h:fuji_xerox:docuprint",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2006-001008"
      }
    ]
  },
  "credits": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/credits#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Sean Krulewitch is credited with the discovery of these vulnerabilities.",
    "sources": [
      {
        "db": "BID",
        "id": "19716"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200608-400"
      }
    ],
    "trust": 0.9
  },
  "cve": "CVE-2006-2113",
  "cvss": {
    "@context": {
      "cvssV2": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
      },
      "cvssV3": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
      },
      "severity": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/cvss/severity#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/severity"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "cvssV2": [
          {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "nvd@nist.gov",
            "availabilityImpact": "PARTIAL",
            "baseScore": 6.4,
            "confidentialityImpact": "NONE",
            "exploitabilityScore": 10.0,
            "id": "CVE-2006-2113",
            "impactScore": 4.9,
            "integrityImpact": "PARTIAL",
            "severity": "MEDIUM",
            "trust": 1.8,
            "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:P",
            "version": "2.0"
          },
          {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "VULHUB",
            "availabilityImpact": "PARTIAL",
            "baseScore": 6.4,
            "confidentialityImpact": "NONE",
            "exploitabilityScore": 10.0,
            "id": "VHN-18221",
            "impactScore": 4.9,
            "integrityImpact": "PARTIAL",
            "severity": "MEDIUM",
            "trust": 0.1,
            "vectorString": "AV:N/AC:L/AU:N/C:N/I:P/A:P",
            "version": "2.0"
          }
        ],
        "cvssV3": [],
        "severity": [
          {
            "author": "nvd@nist.gov",
            "id": "CVE-2006-2113",
            "trust": 1.0,
            "value": "MEDIUM"
          },
          {
            "author": "NVD",
            "id": "CVE-2006-2113",
            "trust": 0.8,
            "value": "Medium"
          },
          {
            "author": "CNNVD",
            "id": "CNNVD-200608-400",
            "trust": 0.6,
            "value": "MEDIUM"
          },
          {
            "author": "VULHUB",
            "id": "VHN-18221",
            "trust": 0.1,
            "value": "MEDIUM"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-18221"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2006-001008"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200608-400"
      },
      {
        "db": "NVD",
        "id": "CVE-2006-2113"
      }
    ]
  },
  "description": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/description#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "The embedded HTTP server in Fuji Xerox Printing Systems (FXPS) print engine, as used in products including (1) Dell 3000cn through 5110cn and (2) Fuji Xerox DocuPrint firmware before 20060628 and Network Option Card firmware before 5.13, does not properly perform authentication for HTTP requests, which allows remote attackers to modify system configuration via crafted requests, including changing the administrator password or causing a denial of service to the print server. These issues occur because the application fails to properly validate HTTP requests. \nAn attacker can exploit these issues to bypass authentication and gain administrative access to the affected embedded application or to cause denial-of-service conditions. This may lead to other attacks. \n\n----------------------------------------------------------------------\n\nWant to work within IT-Security?\n\nSecunia is expanding its team of highly skilled security experts. \nWe will help with relocation and obtaining a work permit. \n\nCurrently the following type of positions are available:\nhttp://secunia.com/quality_assurance_analyst/\nhttp://secunia.com/web_application_security_specialist/ \nhttp://secunia.com/hardcore_disassembler_and_reverse_engineer/\n\n----------------------------------------------------------------------\n\nTITLE:\nDell Color Laser Printers Multiple Vulnerabilities\n\nSECUNIA ADVISORY ID:\nSA21630\n\nVERIFY ADVISORY:\nhttp://secunia.com/advisories/21630/\n\nCRITICAL:\nLess critical\n\nIMPACT:\nSecurity Bypass, DoS\n\nWHERE:\n\u003eFrom local network\n\nOPERATING SYSTEM:\nDell Color Laser Printer 5110cn\nhttp://secunia.com/product/11721/\nDell Color Laser Printer 5100cn\nhttp://secunia.com/product/11733/\nDell Color Laser Printer 3110cn\nhttp://secunia.com/product/11734/\nDell Color Laser Printer 3100cn\nhttp://secunia.com/product/11736/\nDell Color Laser Printer 3010cn\nhttp://secunia.com/product/11735/\nDell Color Laser Printer 3000cn\nhttp://secunia.com/product/11737/\n\nDESCRIPTION:\nSome vulnerabilities have been reported in various Dell Color Laser\nPrinters, which can be exploited by malicious people to bypass\ncertain security restrictions or to cause a DoS (Denial of Service). \n\n1) The embedded FTP server does not restrict the use of the FTP PORT\ncommand. This can be exploited to connect to arbitrary systems\nthrough the FTP server. This can be exploited to make unauthorized\nchanges to the system configuration or to cause a DoS. \n\nThe vulnerability has been reported in Dell 5110cn, Dell 3110cn, and\nDell 3010cn with firmware versions prior to A01 and in Dell 5100cn,\nDell 3100cn, and Dell 3000cn with firmware versions prior to A05. \n\nNOTE: Other products using the Fuji Xerox Printing Engine may also be\naffected. \n\nSOLUTION:\nApply patches. \n\nDell 5110cn (firmware versions prior to A01):\nhttp://ftp.us.dell.com/printer/R130538.EXE\n\nDell 3110cn (firmware versions prior to A01):\nhttp://ftp.us.dell.com/printer/R130356.EXE\n\nDell 3010cn (firmware versions prior to A01):\nhttp://ftp.us.dell.com/printer/R132075.EXE\n\nDell 5100cn (firmware versions prior to A05):\nhttp://ftp.us.dell.com/printer/R132718.EXE\n\nDell 3100cn (firmware versions prior to A05):\nhttp://ftp.us.dell.com/printer/R132079.EXE\n\nDell 3000cn (firmware versions prior to A05):\nhttp://ftp.us.dell.com/printer/R132368.EXE\n\nPROVIDED AND/OR DISCOVERED BY:\nNate Johnson and Sean Krulewitch, Indiana University. \n\nORIGINAL ADVISORY:\nhttps://itso.iu.edu/20060824_FXPS_Print_Engine_Vulnerabilities\n\n----------------------------------------------------------------------\n\nAbout:\nThis Advisory was delivered by Secunia as a free service to help\neverybody keeping their systems up to date against the latest\nvulnerabilities. \n\nSubscribe:\nhttp://secunia.com/secunia_security_advisories/\n\nDefinitions: (Criticality, Where etc.)\nhttp://secunia.com/about_secunia_advisories/\n\n\nPlease Note:\nSecunia recommends that you verify all advisories you receive by\nclicking the link. \nSecunia NEVER sends attached files with advisories. \nSecunia does not advise people to install third party patches, only\nuse those supplied by the vendor. \n\n----------------------------------------------------------------------\n\nUnsubscribe: Secunia Security Advisories\nhttp://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org\n\n----------------------------------------------------------------------\n\n\n. \n\nPROVIDED AND/OR DISCOVERED BY:\nNate Johnson and Sean Krulewitch, Indiana University. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA1\n\nIndiana University Security Advisory: \nFuji Xerox Printing Systems (FXPS)[1] print engine vulnerabilities\n\nAdvisory ID:\n20060824_FXPS_Print_Engine_Vulnerabilities[2]\n\nRevisions:\n08-24-2006 2350 UTC\t1.0\tInitial Public Release\n\nIssues:\nFTP bounce attack is possible when FTP printing is enabled\n(CVE-2006-2112)[3]\n\nEmbedded HTTP server allows unauthenticated access to system\nconfiguration and settings (CVE-2006-2113)[4]\n\nCredit/acknowledgement:\nCVE-2006-2112\nDate of discovery: 04-11-2006\nNate Johnson, Lead Security Engineer, Indiana University\nSean Krulewitch, Deputy IT Security Officer, Indiana University\n\nCVE-2006-2113\nDate of discovery: 04-11-2006\nSean Krulewitch, Deputy IT Security Officer, Indiana University\n\nSummary:\nCertain FXPS print engines contain vulnerabilities that allow a remote\nattacker to perform FTP bounce attacks through the FTP printing\ninterface or allow unauthenticated access to the embedded HTTP remote\nuser interface.  This allows an attacker\nto cause the FTP server to make arbitrary connections to ports on\nanother system, which can be used to bypass access controls and hide the\nthe true identity of the source of the attacker\u0027s traffic. \nA successful attacker would be able to reset the administrator password\nbut would not be capable of exposing the current password. \n\nMitigation/workarounds:\nDisabling FTP printing prevents the FTP bounce attack.  Disabling the\nembedded web server prevents the DoS/unauthorized configuration change\nattack.  Best practice suggests that access controls and network\nfirewall policies be put into place to only allow connections from\ntrusted machines and networks. \n\nCriticality:\nThese vulnerabilities have a combined risk of moderately critical.  \n\nFootnotes:\n[1]\thttp://www.fxpsc.co.jp/en/\n[2]\thttps://itso.iu.edu/20060824_FXPS_Print_Engine_Vulnerabilities\n[3]\thttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2112\n[4]\thttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-2113\n[5]\thttp://ftp.us.dell.com/printer/R130538.EXE\n[6]\thttp://ftp.us.dell.com/printer/R130356.EXE\n[7]\thttp://ftp.us.dell.com/printer/R132075.EXE\n[8]\thttp://ftp.us.dell.com/printer/R132718.EXE\n[9]\thttp://ftp.us.dell.com/printer/R132079.EXE\n[10]\thttp://ftp.us.dell.com/printer/R132368.EXE\n\nAll contents are Copyright 2006 The Trustees of Indiana University. All\nrights reserved. \n\n- -- \nSean Krulewitch, Deputy IT Security Officer\nIT Security Office, Office of the VP for Information Technology\nIndiana University\nFor PGP Key or S/MIME cert:  https://www.itso.iu.edu/Sean_Krulewitch\n\n-----BEGIN PGP SIGNATURE-----\nVersion: PGP Desktop 9.0.6 (Build 6060)\n\niQA/AwUBRO46FTOEdAVfeKEbEQKc+ACeNvyfI5+GXspTdx32rSxH+WHfXW8AoKPe\nAJYb0WM59jddPs4cSXaZOyQq\n=Y7Kv\n-----END PGP SIGNATURE-----\n",
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2006-2113"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2006-001008"
      },
      {
        "db": "BID",
        "id": "19716"
      },
      {
        "db": "VULHUB",
        "id": "VHN-18221"
      },
      {
        "db": "PACKETSTORM",
        "id": "49519"
      },
      {
        "db": "PACKETSTORM",
        "id": "50964"
      },
      {
        "db": "PACKETSTORM",
        "id": "49473"
      }
    ],
    "trust": 2.25
  },
  "external_ids": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "db": "NVD",
        "id": "CVE-2006-2113",
        "trust": 2.9
      },
      {
        "db": "BID",
        "id": "19716",
        "trust": 2.0
      },
      {
        "db": "SECUNIA",
        "id": "22463",
        "trust": 1.8
      },
      {
        "db": "SECUNIA",
        "id": "21630",
        "trust": 1.8
      },
      {
        "db": "VUPEN",
        "id": "ADV-2006-3401",
        "trust": 1.7
      },
      {
        "db": "OSVDB",
        "id": "28250",
        "trust": 1.7
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2006-001008",
        "trust": 0.8
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200608-400",
        "trust": 0.7
      },
      {
        "db": "BUGTRAQ",
        "id": "20060825 INDIANA UNIVERSITY SECURITY ADVISORY: FUJI XEROX PRINTING SYSTEMS (FXPS) PRINT ENGINE VULNERABILITIE",
        "trust": 0.6
      },
      {
        "db": "BUGTRAQ",
        "id": "20060825 INDIANA UNIVERSITY SECURITY ADVISORY: FUJI XEROX PRINTING SYSTEMS (FXPS) PRINT ENGINE VULNERABILITIES",
        "trust": 0.6
      },
      {
        "db": "VULHUB",
        "id": "VHN-18221",
        "trust": 0.1
      },
      {
        "db": "PACKETSTORM",
        "id": "49519",
        "trust": 0.1
      },
      {
        "db": "PACKETSTORM",
        "id": "50964",
        "trust": 0.1
      },
      {
        "db": "PACKETSTORM",
        "id": "49473",
        "trust": 0.1
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-18221"
      },
      {
        "db": "BID",
        "id": "19716"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2006-001008"
      },
      {
        "db": "PACKETSTORM",
        "id": "49519"
      },
      {
        "db": "PACKETSTORM",
        "id": "50964"
      },
      {
        "db": "PACKETSTORM",
        "id": "49473"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200608-400"
      },
      {
        "db": "NVD",
        "id": "CVE-2006-2113"
      }
    ]
  },
  "id": "VAR-200608-0046",
  "iot": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": true,
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-18221"
      }
    ],
    "trust": 0.01
  },
  "last_update_date": "2025-04-03T22:25:57.707000Z",
  "patch": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/patch#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "title": "Top Page",
        "trust": 0.8,
        "url": "http://www.dell.com/"
      },
      {
        "title": "Top Page",
        "trust": 0.8,
        "url": "http://www.fxpsc.co.jp/"
      }
    ],
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2006-001008"
      }
    ]
  },
  "problemtype_data": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "problemtype": "CWE-287",
        "trust": 1.9
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-18221"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2006-001008"
      },
      {
        "db": "NVD",
        "id": "CVE-2006-2113"
      }
    ]
  },
  "references": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/references#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "trust": 2.3,
        "url": "http://itso.iu.edu/20060824_fxps_print_engine_vulnerabilities"
      },
      {
        "trust": 1.7,
        "url": "http://www.securityfocus.com/bid/19716"
      },
      {
        "trust": 1.7,
        "url": "http://www.osvdb.org/28250"
      },
      {
        "trust": 1.7,
        "url": "http://secunia.com/advisories/21630"
      },
      {
        "trust": 1.7,
        "url": "http://secunia.com/advisories/22463"
      },
      {
        "trust": 1.1,
        "url": "http://www.securityfocus.com/archive/1/444321/100/0/threaded"
      },
      {
        "trust": 1.1,
        "url": "http://www.vupen.com/english/advisories/2006/3401"
      },
      {
        "trust": 1.0,
        "url": "http://marc.info/?l=bugtraq\u0026m=115652437223454\u0026w=2"
      },
      {
        "trust": 0.9,
        "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2006-2113"
      },
      {
        "trust": 0.8,
        "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2006-2113"
      },
      {
        "trust": 0.6,
        "url": "http://www.securityfocus.com/archive/1/archive/1/444321/100/0/threaded"
      },
      {
        "trust": 0.6,
        "url": "http://www.frsirt.com/english/advisories/2006/3401"
      },
      {
        "trust": 0.6,
        "url": "http://marc.theaimsgroup.com/?l=bugtraq\u0026m=115652437223454\u0026w=2"
      },
      {
        "trust": 0.4,
        "url": "http://www.fxpsc.co.jp/en/"
      },
      {
        "trust": 0.3,
        "url": "http://dell.com"
      },
      {
        "trust": 0.3,
        "url": "/archive/1/444321"
      },
      {
        "trust": 0.2,
        "url": "http://secunia.com/hardcore_disassembler_and_reverse_engineer/"
      },
      {
        "trust": 0.2,
        "url": "http://ftp.us.dell.com/printer/r132718.exe"
      },
      {
        "trust": 0.2,
        "url": "http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org"
      },
      {
        "trust": 0.2,
        "url": "http://secunia.com/advisories/21630/"
      },
      {
        "trust": 0.2,
        "url": "http://ftp.us.dell.com/printer/r130356.exe"
      },
      {
        "trust": 0.2,
        "url": "http://ftp.us.dell.com/printer/r132079.exe"
      },
      {
        "trust": 0.2,
        "url": "http://ftp.us.dell.com/printer/r132368.exe"
      },
      {
        "trust": 0.2,
        "url": "http://secunia.com/about_secunia_advisories/"
      },
      {
        "trust": 0.2,
        "url": "http://secunia.com/secunia_security_advisories/"
      },
      {
        "trust": 0.2,
        "url": "http://ftp.us.dell.com/printer/r130538.exe"
      },
      {
        "trust": 0.2,
        "url": "http://ftp.us.dell.com/printer/r132075.exe"
      },
      {
        "trust": 0.1,
        "url": "http://marc.info/?l=bugtraq\u0026amp;m=115652437223454\u0026amp;w=2"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/product/11736/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/product/11721/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/product/11734/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/product/11737/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/product/11735/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/quality_assurance_analyst/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/web_application_security_specialist/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/product/11733/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/advisories/22463/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/product/12311/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/product/12314/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/product/12310/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/product/12313/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/product/12315/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/product/12312/"
      },
      {
        "trust": 0.1,
        "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2006-2112"
      },
      {
        "trust": 0.1,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2006-2112"
      },
      {
        "trust": 0.1,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2006-2113"
      },
      {
        "trust": 0.1,
        "url": "https://www.itso.iu.edu/sean_krulewitch"
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-18221"
      },
      {
        "db": "BID",
        "id": "19716"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2006-001008"
      },
      {
        "db": "PACKETSTORM",
        "id": "49519"
      },
      {
        "db": "PACKETSTORM",
        "id": "50964"
      },
      {
        "db": "PACKETSTORM",
        "id": "49473"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200608-400"
      },
      {
        "db": "NVD",
        "id": "CVE-2006-2113"
      }
    ]
  },
  "sources": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "db": "VULHUB",
        "id": "VHN-18221"
      },
      {
        "db": "BID",
        "id": "19716"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2006-001008"
      },
      {
        "db": "PACKETSTORM",
        "id": "49519"
      },
      {
        "db": "PACKETSTORM",
        "id": "50964"
      },
      {
        "db": "PACKETSTORM",
        "id": "49473"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200608-400"
      },
      {
        "db": "NVD",
        "id": "CVE-2006-2113"
      }
    ]
  },
  "sources_release_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2006-08-25T00:00:00",
        "db": "VULHUB",
        "id": "VHN-18221"
      },
      {
        "date": "2006-08-25T00:00:00",
        "db": "BID",
        "id": "19716"
      },
      {
        "date": "2012-06-26T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2006-001008"
      },
      {
        "date": "2006-08-29T03:00:37",
        "db": "PACKETSTORM",
        "id": "49519"
      },
      {
        "date": "2006-10-16T15:32:01",
        "db": "PACKETSTORM",
        "id": "50964"
      },
      {
        "date": "2006-08-28T05:06:00",
        "db": "PACKETSTORM",
        "id": "49473"
      },
      {
        "date": "2006-08-24T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-200608-400"
      },
      {
        "date": "2006-08-25T01:04:00",
        "db": "NVD",
        "id": "CVE-2006-2113"
      }
    ]
  },
  "sources_update_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2018-10-18T00:00:00",
        "db": "VULHUB",
        "id": "VHN-18221"
      },
      {
        "date": "2006-10-13T21:49:00",
        "db": "BID",
        "id": "19716"
      },
      {
        "date": "2012-06-26T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2006-001008"
      },
      {
        "date": "2006-10-30T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-200608-400"
      },
      {
        "date": "2025-04-03T01:03:51.193000",
        "db": "NVD",
        "id": "CVE-2006-2113"
      }
    ]
  },
  "threat_type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "remote",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-200608-400"
      }
    ],
    "trust": 0.6
  },
  "title": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/title#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Fuji Xerox Printing Systems Embedded HTTP Server Multiple Vulnerabilities",
    "sources": [
      {
        "db": "BID",
        "id": "19716"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200608-400"
      }
    ],
    "trust": 0.9
  },
  "type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "authorization issue",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-200608-400"
      }
    ],
    "trust": 0.6
  }
}

GSD-2006-2113

Vulnerability from gsd - Updated: 2023-12-13 01:19

Details

Aliases

CVE-2006-2113

Aliases

CVE-2006-2113

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2006-2113",
    "description": "The embedded HTTP server in Fuji Xerox Printing Systems (FXPS) print engine, as used in products including (1) Dell 3000cn through 5110cn and (2) Fuji Xerox DocuPrint firmware before 20060628 and Network Option Card firmware before 5.13, does not properly perform authentication for HTTP requests, which allows remote attackers to modify system configuration via crafted requests, including changing the administrator password or causing a denial of service to the print server.",
    "id": "GSD-2006-2113"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2006-2113"
      ],
      "details": "The embedded HTTP server in Fuji Xerox Printing Systems (FXPS) print engine, as used in products including (1) Dell 3000cn through 5110cn and (2) Fuji Xerox DocuPrint firmware before 20060628 and Network Option Card firmware before 5.13, does not properly perform authentication for HTTP requests, which allows remote attackers to modify system configuration via crafted requests, including changing the administrator password or causing a denial of service to the print server.",
      "id": "GSD-2006-2113",
      "modified": "2023-12-13T01:19:52.779987Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2006-2113",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "The embedded HTTP server in Fuji Xerox Printing Systems (FXPS) print engine, as used in products including (1) Dell 3000cn through 5110cn and (2) Fuji Xerox DocuPrint firmware before 20060628 and Network Option Card firmware before 5.13, does not properly perform authentication for HTTP requests, which allows remote attackers to modify system configuration via crafted requests, including changing the administrator password or causing a denial of service to the print server."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "ADV-2006-3401",
            "refsource": "VUPEN",
            "url": "http://www.vupen.com/english/advisories/2006/3401"
          },
          {
            "name": "19716",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/19716"
          },
          {
            "name": "28250",
            "refsource": "OSVDB",
            "url": "http://www.osvdb.org/28250"
          },
          {
            "name": "21630",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/21630"
          },
          {
            "name": "20060825 Indiana University Security Advisory: Fuji Xerox Printing Systems (FXPS) print engine vulnerabilitie",
            "refsource": "BUGTRAQ",
            "url": "http://marc.info/?l=bugtraq\u0026m=115652437223454\u0026w=2"
          },
          {
            "name": "http://itso.iu.edu/20060824_FXPS_Print_Engine_Vulnerabilities",
            "refsource": "MISC",
            "url": "http://itso.iu.edu/20060824_FXPS_Print_Engine_Vulnerabilities"
          },
          {
            "name": "20060825 Indiana University Security Advisory: Fuji Xerox Printing Systems (FXPS) print engine vulnerabilities",
            "refsource": "BUGTRAQ",
            "url": "http://www.securityfocus.com/archive/1/444321/100/0/threaded"
          },
          {
            "name": "22463",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/22463"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:h:dell:3010cn:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:h:dell:3100cn:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:h:fuji_xerox:docuprint_c1616:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:h:fuji_xerox:docuprint_c1616_network_option_card:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:h:fuji_xerox:phaser_6201j:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:h:dell:3000cn:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:h:fuji_xerox:docuprint_211:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:h:fuji_xerox:docuprint_211_network_option_card:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:h:fuji_xerox:docuprint_c830_network_option_card:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:h:fuji_xerox:fuji_xerox_printing_systems_print_engine:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:h:dell:3110cn:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:h:dell:5100cn:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:h:dell:5110cn:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:h:fuji_xerox:docuprint_c2535a:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:h:fuji_xerox:docuprint_c525a:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:h:fuji_xerox:docuprint_181:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:h:fuji_xerox:docuprint_181_network_option_card:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:h:fuji_xerox:docuprint_c525a_network_option_card:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:h:fuji_xerox:docuprint_c830:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2006-2113"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "The embedded HTTP server in Fuji Xerox Printing Systems (FXPS) print engine, as used in products including (1) Dell 3000cn through 5110cn and (2) Fuji Xerox DocuPrint firmware before 20060628 and Network Option Card firmware before 5.13, does not properly perform authentication for HTTP requests, which allows remote attackers to modify system configuration via crafted requests, including changing the administrator password or causing a denial of service to the print server."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-287"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://itso.iu.edu/20060824_FXPS_Print_Engine_Vulnerabilities",
              "refsource": "MISC",
              "tags": [
                "Patch"
              ],
              "url": "http://itso.iu.edu/20060824_FXPS_Print_Engine_Vulnerabilities"
            },
            {
              "name": "19716",
              "refsource": "BID",
              "tags": [],
              "url": "http://www.securityfocus.com/bid/19716"
            },
            {
              "name": "28250",
              "refsource": "OSVDB",
              "tags": [],
              "url": "http://www.osvdb.org/28250"
            },
            {
              "name": "21630",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/21630"
            },
            {
              "name": "22463",
              "refsource": "SECUNIA",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://secunia.com/advisories/22463"
            },
            {
              "name": "ADV-2006-3401",
              "refsource": "VUPEN",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://www.vupen.com/english/advisories/2006/3401"
            },
            {
              "name": "20060825 Indiana University Security Advisory: Fuji Xerox Printing Systems (FXPS) print engine vulnerabilitie",
              "refsource": "BUGTRAQ",
              "tags": [],
              "url": "http://marc.info/?l=bugtraq\u0026m=115652437223454\u0026w=2"
            },
            {
              "name": "20060825 Indiana University Security Advisory: Fuji Xerox Printing Systems (FXPS) print engine vulnerabilities",
              "refsource": "BUGTRAQ",
              "tags": [],
              "url": "http://www.securityfocus.com/archive/1/444321/100/0/threaded"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 6.4,
            "confidentialityImpact": "NONE",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:P",
            "version": "2.0"
          },
          "exploitabilityScore": 10.0,
          "impactScore": 4.9,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "MEDIUM",
          "userInteractionRequired": false
        }
      },
      "lastModifiedDate": "2018-10-18T16:38Z",
      "publishedDate": "2006-08-25T01:04Z"
    }
  }
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2006-2113 (GCVE-0-2006-2113)

FKIE_CVE-2006-2113

CERTA-2006-AVI-380

Description

Solution

GHSA-FJRM-V8HG-F6JJ

VAR-200608-0046

GSD-2006-2113

Tags

Sightings

Nomenclature