Search Results | AttackerKB

Show filters

Topics 60 Users 9,714

Clear All

Disclosure Date

Disclosure Year Disclosure Month

Collection Command and Control Credential Access Defense Evasion Discovery Execution Exfiltration Impact Initial Access Lateral Movement Persistence Privilege Escalation

60 Total Results

Displaying 31-40 of 60

Attacker Value

Unknown

CVE-2006-6472

Disclosure Date: December 11, 2006 (last updated October 04, 2023)

The httpd.conf file in Xerox WorkCentre and WorkCentre Pro before 12.050.03.000, 13.x before 13.050.03.000, and 14.x before 14.050.03.000 configures port 443 to be always active, which has unknown impact and remote attack vectors.

0

Attacker Value

Unknown

CVE-2006-6438

Disclosure Date: December 10, 2006 (last updated October 04, 2023)

Xerox WorkCentre and WorkCentre Pro before 12.050.03.000, 13.x before 13.050.03.000, and 14.x before 14.050.03.000 leaves sensitive user data in http.log after an Immediate Image Overwrite (IIO), which allows local users to obtain the data by reading the http.log file.

0

Attacker Value

Unknown

CVE-2006-6439

Disclosure Date: December 10, 2006 (last updated October 04, 2023)

Xerox WorkCentre and WorkCentre Pro before 12.050.03.000, 13.x before 13.050.03.000, and 14.x before 14.050.03.000 allows remote attackers to download the audit log and obtain potentially sensitive information via unspecified vectors.

0

Attacker Value

Unknown

CVE-2006-6440

Disclosure Date: December 10, 2006 (last updated October 04, 2023)

Multiple unspecified vulnerabilities in Xerox WorkCentre and WorkCentre Pro before 12.050.03.000, 13.x before 13.050.03.000, and 14.x before 14.050.03.000 allow remote attackers to have an unspecified impact via unspecified vectors relating to "HTTP Security issues."

0

Attacker Value

Unknown

CVE-2006-6441

Disclosure Date: December 10, 2006 (last updated October 04, 2023)

Xerox WorkCentre and WorkCentre Pro before 12.050.03.000, 13.x before 13.050.03.000, and 14.x before 14.050.03.000 allows local users to bypass security controls and boot Alchemy via certain alternate boot media, as demonstrated by a USB thumb drive.

0

Attacker Value

Unknown

CVE-2006-6437

Disclosure Date: December 10, 2006 (last updated October 04, 2023)

ops3-dmn in Xerox WorkCentre and WorkCentre Pro before 12.050.03.000, 13.x before 13.050.03.000, and 14.x before 14.050.03.000 allows attackers to cause a denial of service (application crash and core dump) via a certain PS file.

0

Attacker Value

Unknown

CVE-2006-6431

Disclosure Date: December 10, 2006 (last updated October 04, 2023)

Unspecified vulnerability in Xerox WorkCentre and WorkCentre Pro before 12.060.17.000, 13.x before 13.060.17.000, and 14.x before 14.060.17.000 allows attackers to modify signatures of e-mail messages via unspecified vectors.

0

Attacker Value

Unknown

CVE-2006-6430

Disclosure Date: December 10, 2006 (last updated October 04, 2023)

Web services in Xerox WorkCentre and WorkCentre Pro before 12.060.17.000, 13.x before 13.060.17.000, and 14.x before 14.060.17.000 do not require HTTPS, which allows remote attackers to obtain sensitive information by sniffing the unencrypted HTTP traffic.

0

Attacker Value

Unknown

CVE-2006-6433

Disclosure Date: December 10, 2006 (last updated October 04, 2023)

Xerox WorkCentre and WorkCentre Pro before 12.060.17.000, 13.x before 13.060.17.000, and 14.x before 14.060.17.000 does not record accurate timestamps, which makes it easier for remote attackers to avoid detection when an audit tries to rely on these timestamps.

0

Attacker Value

Unknown

CVE-2006-6432

Disclosure Date: December 10, 2006 (last updated October 04, 2023)

Unspecified vulnerability in the Scan-to-mailbox feature in Xerox WorkCentre and WorkCentre Pro before 12.060.17.000, 13.x before 13.060.17.000, and 14.x before 14.060.17.000 allows remote attackers to download certain files via unspecified vectors.

0