CVE-2006-1138

Name: CVE-2006-1138
Creator: NVD / NIST
Published: 2006-03-10T02:02:00+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

UnknownEPSS 3.23%

Last modified Jun 16, 2026

CVE-2006-1138 is a vulnerability of currently unknown severity. Unspecified vulnerability in the web server code in Xerox CopyCentre and Xerox WorkCentre Pro, running software 1.001.02.073 or earlier, or 1.001.02.074 before 1.001.02.715, allows remote attackers to cause a denial of service (memory corruption) via unknown vectors.. EPSS estimates a 3.23% chance of exploitation in the next 30 days.

Description

Unspecified vulnerability in the web server code in Xerox CopyCentre and Xerox WorkCentre Pro, running software 1.001.02.073 or earlier, or 1.001.02.074 before 1.001.02.715, allows remote attackers to cause a denial of service (memory corruption) via unknown vectors.

Metrics

EPSS Probability

3.23%

86.7th percentile

Probability of exploitation in the next 30 days. Learn more

Affected Software

Vendor	Product	Versions
Xerox	Copycentre C65 Firmware	<= 1.001.02.073
Xerox	Copycentre C65 Firmware	>= 1.001.02.074, < 1.001.02.715
Xerox	Copycentre C75 Firmware	<= 1.001.02.073
Xerox	Copycentre C75 Firmware	>= 1.001.02.074, < 1.001.02.715
Xerox	Copycentre C90 Firmware	<= 1.001.02.073
Xerox	Copycentre C90 Firmware	>= 1.001.02.074, < 1.001.02.715
Xerox	Workcentre Pro 65 Firmware	<= 1.001.02.073
Xerox	Workcentre Pro 65 Firmware	>= 1.001.02.074, < 1.001.02.715
Xerox	Workcentre Pro 75 Firmware	<= 1.001.02.073
Xerox	Workcentre Pro 75 Firmware	>= 1.001.02.074, < 1.001.02.715
Xerox	Workcentre Pro 90 Firmware	<= 1.001.02.073
Xerox	Workcentre Pro 90 Firmware	>= 1.001.02.074, < 1.001.02.715

References

http://secunia.com/advisories/19146Third Party Advisory
http://securitytracker.com/id?1015738Third Party Advisory, VDB Entry
http://www.osvdb.org/23727Broken Link
http://www.securityfocus.com/bid/17014Third Party Advisory, VDB Entry
http://www.vupen.com/english/advisories/2006/0857Permissions Required, Third Party Advisory
http://www.xerox.com/downloads/usa/en/c/cert_XRX06_002.pdfBroken Link, Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/25175Third Party Advisory, VDB Entry
http://secunia.com/advisories/19146Third Party Advisory
http://securitytracker.com/id?1015738Third Party Advisory, VDB Entry
http://www.osvdb.org/23727Broken Link
http://www.securityfocus.com/bid/17014Third Party Advisory, VDB Entry
http://www.vupen.com/english/advisories/2006/0857Permissions Required, Third Party Advisory
http://www.xerox.com/downloads/usa/en/c/cert_XRX06_002.pdfBroken Link, Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/25175Third Party Advisory, VDB Entry

Timeline

Published: Mar 10, 2006
Last Modified: Jun 16, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2006-1138?

How severe is CVE-2006-1138?

Severity scoring for CVE-2006-1138 is pending analysis. The EPSS model estimates a 3.23% probability of exploitation in the next 30 days.

How do I fix CVE-2006-1138?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2006-1138?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST