Strix
26.1K

CVE-2006-2113

UnknownEPSS 1.90%

Last modified

CVE-2006-2113 is a vulnerability of currently unknown severity. The embedded HTTP server in Fuji Xerox Printing Systems (FXPS) print engine, as used in products including (1) Dell 3000cn through 5110cn and (2) Fuji Xerox DocuPrint firmware before 20060628 and Network Option Card firmware before 5.13, does not properly perform authentication for HTTP requests, which allows remote attackers to modify system configuration via crafted requests, including changing the administrator password or causing a denial of service to the print server.. EPSS estimates a 1.90% chance of exploitation in the next 30 days.

Description

The embedded HTTP server in Fuji Xerox Printing Systems (FXPS) print engine, as used in products including (1) Dell 3000cn through 5110cn and (2) Fuji Xerox DocuPrint firmware before 20060628 and Network Option Card firmware before 5.13, does not properly perform authentication for HTTP requests, which allows remote attackers to modify system configuration via crafted requests, including changing the administrator password or causing a denial of service to the print server.

Metrics

EPSS Probability
1.90%

77.1th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

VendorProductVersions
Dell3000cnAll versions
Dell3010cnAll versions
Dell3100cnAll versions
Dell3110cnAll versions
Dell5100cnAll versions
Dell5110cnAll versions
Fuji XeroxDocuprint 181All versions
Fuji XeroxDocuprint 181 Network Option CardAll versions
Fuji XeroxDocuprint 211All versions
Fuji XeroxDocuprint 211 Network Option CardAll versions
Fuji XeroxDocuprint C1616All versions
Fuji XeroxDocuprint C1616 Network Option CardAll versions
Fuji XeroxDocuprint C2535aAll versions
Fuji XeroxDocuprint C525aAll versions
Fuji XeroxDocuprint C525a Network Option CardAll versions
Fuji XeroxDocuprint C830All versions
Fuji XeroxDocuprint C830 Network Option CardAll versions
Fuji XeroxFuji Xerox Printing Systems Print EngineAll versions
Fuji XeroxPhaser 6201jAll versions

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2006-2113?
The embedded HTTP server in Fuji Xerox Printing Systems (FXPS) print engine, as used in products including (1) Dell 3000cn through 5110cn and (2) Fuji Xerox DocuPrint firmware before 20060628 and Network Option Card firmware before 5.13, does not properly perform authentication for HTTP requests, which allows remote attackers to modify system configuration via crafted requests, including changing the administrator password or causing a denial of service to the print server.
How severe is CVE-2006-2113?
Severity scoring for CVE-2006-2113 is pending analysis. The EPSS model estimates a 1.90% probability of exploitation in the next 30 days.
How do I fix CVE-2006-2113?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2006-2113?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST