Vulnerability Details : CVE-2006-1137
Multiple unspecified vulnerabilities in Xerox CopyCentre and Xerox WorkCentre Pro, running software 1.001.02.073 or earlier, or 1.001.02.074 before 1.001.02.715, allow remote attackers to cause an unspecified denial of service via a crafted PostScript file that will (1) "navigate through the directory" or (2) a "file sent to expose TCP/IP ports".
Vulnerability category: Denial of service
Products affected by CVE-2006-1137
- Xerox » Copycentre C65 FirmwareVersions from including (>=) 1.001.02.074 and before (<) 1.001.02.715cpe:2.3:o:xerox:copycentre_c65_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:xerox:copycentre_c65_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:xerox:copycentre_c75_firmware:*:*:*:*:*:*:*:*
- Xerox » Copycentre C75 FirmwareVersions from including (>=) 1.001.02.074 and before (<) 1.001.02.715cpe:2.3:o:xerox:copycentre_c75_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:xerox:copycentre_c90_firmware:*:*:*:*:*:*:*:*
- Xerox » Copycentre C90 FirmwareVersions from including (>=) 1.001.02.074 and before (<) 1.001.02.715cpe:2.3:o:xerox:copycentre_c90_firmware:*:*:*:*:*:*:*:*
- Xerox » Workcentre Pro 65 FirmwareVersions from including (>=) 1.001.02.074 and before (<) 1.001.02.715cpe:2.3:o:xerox:workcentre_pro_65_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:xerox:workcentre_pro_65_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:xerox:workcentre_pro_75_firmware:*:*:*:*:*:*:*:*
- Xerox » Workcentre Pro 75 FirmwareVersions from including (>=) 1.001.02.074 and before (<) 1.001.02.715cpe:2.3:o:xerox:workcentre_pro_75_firmware:*:*:*:*:*:*:*:*
- Xerox » Workcentre Pro 90 FirmwareVersions from including (>=) 1.001.02.074 and before (<) 1.001.02.715cpe:2.3:o:xerox:workcentre_pro_90_firmware:*:*:*:*:*:*:*:*
- cpe:2.3:o:xerox:workcentre_pro_90_firmware:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2006-1137
3.98%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 91 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2006-1137
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
5.0
|
MEDIUM | AV:N/AC:L/Au:N/C:N/I:N/A:P |
10.0
|
2.9
|
NIST |
References for CVE-2006-1137
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/25174
Third Party Advisory;VDB Entry
-
http://securitytracker.com/id?1015738
Third Party Advisory;VDB Entry
-
http://www.vupen.com/english/advisories/2006/0857
Permissions Required;Third Party Advisory
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/25173
Third Party Advisory;VDB Entry
-
http://www.xerox.com/downloads/usa/en/c/cert_XRX06_002.pdf
Broken Link;Vendor Advisory
-
http://www.securityfocus.com/bid/17014
Third Party Advisory;VDB Entry
Jump to