Strix
26.1K

CVE-2006-2112

UnknownEPSS 2.11%

Last modified

CVE-2006-2112 is a vulnerability of currently unknown severity. Fuji Xerox Printing Systems (FXPS) print engine, as used in products including (1) Dell 3000cn through 5110cn and (2) Fuji Xerox DocuPrint firmware before 20060628 and Network Option Card firmware before 5.13, allows remote attackers to use the FTP printing interface as a proxy ("FTP bounce") by using arbitrary PORT arguments to connect to systems for which access would be otherwise restricted.. EPSS estimates a 2.11% chance of exploitation in the next 30 days.

Description

Fuji Xerox Printing Systems (FXPS) print engine, as used in products including (1) Dell 3000cn through 5110cn and (2) Fuji Xerox DocuPrint firmware before 20060628 and Network Option Card firmware before 5.13, allows remote attackers to use the FTP printing interface as a proxy ("FTP bounce") by using arbitrary PORT arguments to connect to systems for which access would be otherwise restricted.

Metrics

EPSS Probability
2.11%

79.4th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

VendorProductVersions
Dell3000cnAll versions
Dell3010cnAll versions
Dell3100cnAll versions
Dell3110cnAll versions
Dell5100cnAll versions
Dell5110cnAll versions
Fuji XeroxDocuprint 181All versions
Fuji XeroxDocuprint 181 Network Option CardAll versions
Fuji XeroxDocuprint 211All versions
Fuji XeroxDocuprint 211 Network Option CardAll versions
Fuji XeroxDocuprint C1616All versions
Fuji XeroxDocuprint C1616 Network Option CardAll versions
Fuji XeroxDocuprint C2535aAll versions
Fuji XeroxDocuprint C525aAll versions
Fuji XeroxDocuprint C525a Network Option CardAll versions
Fuji XeroxDocuprint C830All versions
Fuji XeroxDocuprint C830 Network Option CardAll versions
Fuji XeroxFuji Xerox Printing Systems Print EngineAll versions
Fuji XeroxPhaser 6201jAll versions

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2006-2112?
Fuji Xerox Printing Systems (FXPS) print engine, as used in products including (1) Dell 3000cn through 5110cn and (2) Fuji Xerox DocuPrint firmware before 20060628 and Network Option Card firmware before 5.13, allows remote attackers to use the FTP printing interface as a proxy ("FTP bounce") by using arbitrary PORT arguments to connect to systems for which access would be otherwise restricted.
How severe is CVE-2006-2112?
Severity scoring for CVE-2006-2112 is pending analysis. The EPSS model estimates a 2.11% probability of exploitation in the next 30 days.
How do I fix CVE-2006-2112?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2006-2112?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST