The Web User Interface in Xerox WorkCentre and WorkCentre Pro before 12.060.17.000, 13.x before 13.060.17.000, and 14.x before 14.060.17.000 allows remote attackers to execute arbitrary commands via unspecified vectors involving "command injection" in (1) the TCP/IP hostname, (2) Scan-to-mailbox folder names, and (3) certain parameters in the Microsoft Networking configuration. NOTE: vector 1 might be the same as CVE-2006-5290.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2006-12-10T11:00:00
Updated: 2017-07-28T12:57:01
Reserved: 2006-12-09T00:00:00
Link: CVE-2006-6427
JSON object: View
NVD Information
Status : Modified
Published: 2006-12-10T11:28:00.000
Modified: 2017-07-29T01:29:31.780
Link: CVE-2006-6427
JSON object: View
Redhat Information
No data.
CWE