ZeroBox Vulnerability Database

漏洞起因
输入验证错误
 
影响系统
Xerox WorkCentre Pro 275
Xerox WorkCentre Pro 265
Xerox WorkCentre Pro 255
Xerox WorkCentre Pro 245
Xerox WorkCentre Pro 238
Xerox WorkCentre Pro 232
Xerox WorkCentre 7675 0
Xerox WorkCentre 7665 0
Xerox WorkCentre 7655 0
Xerox WorkCentre 5687
Xerox WorkCentre 5675
Xerox WorkCentre 5665
Xerox WorkCentre 5655
Xerox WorkCentre 5645
Xerox WorkCentre 5638
Xerox WorkCentre 5632
Xerox WorkCentre 275
Xerox WorkCentre 265
Xerox WorkCentre 255
Xerox WorkCentre 245
Xerox WorkCentre 238
Xerox WorkCentre 232
 
不受影响系统
 
危害
远程攻击者可以利用漏洞以WEB进程权限执行任意命令。
 
攻击所需条件
攻击者必须访问Xerox WorkCentre Webserver。
 
漏洞信息
Xerox WorkCentre/WorkCentre Pro是一款多功能一体机。
Xerox WorkCentre包含的WEB服务器存在输入验证问题，远程攻击者可以利用漏洞以WEB进程权限执行任意命令。
目前没有详细漏洞细节提供。
 
测试方法
 
厂商解决方案
可参考如下补丁程序：
Xerox WorkCentre 275
Xerox cert_P37v1_WCP275_WC5687_Patch.zip
http://www.xerox.com/downloads/usa/en/c/cert_P37v1_WCP275_WC5687_Patch .zip
Xerox WorkCentre Pro 275
Xerox cert_P37v1_WCP275_WC5687_Patch.zip
http://www.xerox.com/downloads/usa/en/c/cert_P37v1_WCP275_WC5687_Patch .zip
Xerox WorkCentre 265
Xerox cert_P37v1_WCP275_WC5687_Patch.zip
http://www.xerox.com/downloads/usa/en/c/cert_P37v1_WCP275_WC5687_Patch .zip
Xerox WorkCentre Pro 232
Xerox cert_P37v1_WCP275_WC5687_Patch.zip
http://www.xerox.com/downloads/usa/en/c/cert_P37v1_WCP275_WC5687_Patch .zip
Xerox WorkCentre Pro 265
Xerox cert_P37v1_WCP275_WC5687_Patch.zip
http://www.xerox.com/downloads/usa/en/c/cert_P37v1_WCP275_WC5687_Patch .zip
Xerox WorkCentre 5687
Xerox cert_P37v1_WCP275_WC5687_Patch.zip
http://www.xerox.com/downloads/usa/en/c/cert_P37v1_WCP275_WC5687_Patch .zip
Xerox WorkCentre 5655
Xerox cert_P37v1_WCP275_WC5687_Patch.zip
http://www.xerox.com/downloads/usa/en/c/cert_P37v1_WCP275_WC5687_Patch .zip
Xerox WorkCentre 238
Xerox cert_P37v1_WCP275_WC5687_Patch.zip
http://www.xerox.com/downloads/usa/en/c/cert_P37v1_WCP275_WC5687_Patch .zip
Xerox WorkCentre 245
Xerox cert_P37v1_WCP275_WC5687_Patch.zip
http://www.xerox.com/downloads/usa/en/c/cert_P37v1_WCP275_WC5687_Patch .zip
Xerox WorkCentre Pro 255
Xerox cert_P37v1_WCP275_WC5687_Patch.zip
http://www.xerox.com/downloads/usa/en/c/cert_P37v1_WCP275_WC5687_Patch .zip
Xerox WorkCentre 232
Xerox cert_P37v1_WCP275_WC5687_Patch.zip
http://www.xerox.com/downloads/usa/en/c/cert_P37v1_WCP275_WC5687_Patch .zip
Xerox WorkCentre 5638
Xerox cert_P37v1_WCP275_WC5687_Patch.zip
http://www.xerox.com/downloads/usa/en/c/cert_P37v1_WCP275_WC5687_Patch .zip
Xerox WorkCentre Pro 238
Xerox cert_P37v1_WCP275_WC5687_Patch.zip
http://www.xerox.com/downloads/usa/en/c/cert_P37v1_WCP275_WC5687_Patch .zip
Xerox WorkCentre 5645
Xerox cert_P37v1_WCP275_WC5687_Patch.zip
http://www.xerox.com/downloads/usa/en/c/cert_P37v1_WCP275_WC5687_Patch .zip
Xerox WorkCentre 5632
Xerox cert_P37v1_WCP275_WC5687_Patch.zip
http://www.xerox.com/downloads/usa/en/c/cert_P37v1_WCP275_WC5687_Patch .zip
Xerox WorkCentre 255
Xerox cert_P37v1_WCP275_WC5687_Patch.zip
http://www.xerox.com/downloads/usa/en/c/cert_P37v1_WCP275_WC5687_Patch .zip
Xerox WorkCentre Pro 245
Xerox cert_P37v1_WCP275_WC5687_Patch.zip
http://www.xerox.com/downloads/usa/en/c/cert_P37v1_WCP275_WC5687_Patch .zip
Xerox WorkCentre 5665
Xerox cert_P37v1_WCP275_WC5687_Patch.zip
http://www.xerox.com/downloads/usa/en/c/cert_P37v1_WCP275_WC5687_Patch .zip
Xerox WorkCentre 5675
Xerox cert_P37v1_WCP275_WC5687_Patch.zip
http://www.xerox.com/downloads/usa/en/c/cert_P37v1_WCP275_WC5687_Patch .zip
 
漏洞提供者
Xerox