Xerox WorkCentre Webserver Unspecified Remote Command Execution Vulnerability

Xerox WorkCentre is prone to an unspecified remote command-execution vulnerability because it fails to sanitize user-supplied input. This issue occurs in the webserver.

An attacker can exploit this issue to execute arbitrary commands with the privileges of the webserver, which may aid in further attacks.

Technical details are currently unavailable. We will update this BID as soon as more information emerges.

The following Xerox products are affected:

WorkCentre 232
WorkCentre 238
WorkCentre 245
WorkCentre 255
WorkCentre 265
WorkCentre 275
WorkCentre 5632
WorkCentre 5638
WorkCentre 5645
WorkCentre 5655
WorkCentre 5665
WorkCentre 5675
WorkCentre 5687
WorkCentre 7655
WorkCentre 7665
WorkCentre 7675
WorkCentre Pro 232
WorkCentre Pro 238
WorkCentre Pro 245
WorkCentre Pro 255
WorkCentre Pro 265
WorkCentre Pro 275


 

Privacy Statement
Copyright 2010, SecurityFocus