CVE-2006-1137

Name: CVE-2006-1137
Creator: NVD / NIST
Published: 2006-03-10T02:02:00+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

UnknownEPSS 3.94%

Last modified Jun 16, 2026

CVE-2006-1137 is a vulnerability of currently unknown severity. Multiple unspecified vulnerabilities in Xerox CopyCentre and Xerox WorkCentre Pro, running software 1.001.02.073 or earlier, or 1.001.02.074 before 1.001.02.715, allow remote attackers to cause an unspecified denial of service via a crafted PostScript file that will (1) "navigate through the directory" or (2) a "file sent to expose TCP/IP ports".. EPSS estimates a 3.94% chance of exploitation in the next 30 days.

Description

Multiple unspecified vulnerabilities in Xerox CopyCentre and Xerox WorkCentre Pro, running software 1.001.02.073 or earlier, or 1.001.02.074 before 1.001.02.715, allow remote attackers to cause an unspecified denial of service via a crafted PostScript file that will (1) "navigate through the directory" or (2) a "file sent to expose TCP/IP ports".

Metrics

EPSS Probability

3.94%

89.1th percentile

Probability of exploitation in the next 30 days. Learn more

Affected Software

Vendor	Product	Versions
Xerox	Copycentre C65 Firmware	<= 1.001.02.073
Xerox	Copycentre C65 Firmware	>= 1.001.02.074, < 1.001.02.715
Xerox	Copycentre C75 Firmware	<= 1.001.02.073
Xerox	Copycentre C75 Firmware	>= 1.001.02.074, < 1.001.02.715
Xerox	Copycentre C90 Firmware	<= 1.001.02.073
Xerox	Copycentre C90 Firmware	>= 1.001.02.074, < 1.001.02.715
Xerox	Workcentre Pro 65 Firmware	<= 1.001.02.073
Xerox	Workcentre Pro 65 Firmware	>= 1.001.02.074, < 1.001.02.715
Xerox	Workcentre Pro 75 Firmware	<= 1.001.02.073
Xerox	Workcentre Pro 75 Firmware	>= 1.001.02.074, < 1.001.02.715
Xerox	Workcentre Pro 90 Firmware	<= 1.001.02.073
Xerox	Workcentre Pro 90 Firmware	>= 1.001.02.074, < 1.001.02.715

References

http://secunia.com/advisories/19146Third Party Advisory
http://securitytracker.com/id?1015738Third Party Advisory, VDB Entry
http://www.osvdb.org/23725Broken Link
http://www.osvdb.org/23726Broken Link
http://www.securityfocus.com/bid/17014Third Party Advisory, VDB Entry
http://www.vupen.com/english/advisories/2006/0857Permissions Required, Third Party Advisory
http://www.xerox.com/downloads/usa/en/c/cert_XRX06_002.pdfBroken Link, Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/25173Third Party Advisory, VDB Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/25174Third Party Advisory, VDB Entry
http://secunia.com/advisories/19146Third Party Advisory
http://securitytracker.com/id?1015738Third Party Advisory, VDB Entry
http://www.osvdb.org/23725Broken Link
http://www.osvdb.org/23726Broken Link
http://www.securityfocus.com/bid/17014Third Party Advisory, VDB Entry
http://www.vupen.com/english/advisories/2006/0857Permissions Required, Third Party Advisory
http://www.xerox.com/downloads/usa/en/c/cert_XRX06_002.pdfBroken Link, Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/25173Third Party Advisory, VDB Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/25174Third Party Advisory, VDB Entry

Timeline

Published: Mar 10, 2006
Last Modified: Jun 16, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2006-1137?

How severe is CVE-2006-1137?

Severity scoring for CVE-2006-1137 is pending analysis. The EPSS model estimates a 3.94% probability of exploitation in the next 30 days.

How do I fix CVE-2006-1137?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2006-1137?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST