What is the severity of CVE-2006-5290?

CVE-2006-5290 is considered to have a critical severity level due to its ability to allow remote code execution.

How do I fix CVE-2006-5290?

To fix CVE-2006-5290, you should apply the latest firmware updates provided by Xerox for the affected WorkCentre models.

Which Xerox products are affected by CVE-2006-5290?

CVE-2006-5290 affects several models including Xerox WorkCentre 232, 238, 245, 255, 265, and 275.

Is CVE-2006-5290 a network vulnerability?

Yes, CVE-2006-5290 is a network vulnerability that exploits weaknesses in the web server components of affected Xerox devices.

Vulnerability/
CVE-2006-5290

high

7.5

CWE

NVD-CWE-Other 77

13/10/2006

7/8/2024

CVE-2006-5290: Command Injection

First published: Fri Oct 13 2006(Updated: )

The ESS/ Network Controller and MicroServer Web Server components of Xerox WorkCentre and WorkCentre Pro 232, 238, 245, 255, 265 and 275 allow remote attackers to bypass authentication and execute arbitrary code via "WebUI command injection on TCP/IP hostname."

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Xerox Workcentre 255
Xerox Workcentre 245
Xerox Workcentre 238
Xerox Workcentre 232
Xerox Workcentre 232
Xerox Workcentre 265
Xerox Workcentre 245
Xerox Workcentre 238
Xerox Workcentre 275
Xerox Workcentre 255
Xerox Workcentre 275
Xerox Workcentre 265

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2006-5290?
CVE-2006-5290 is considered to have a critical severity level due to its ability to allow remote code execution.
How do I fix CVE-2006-5290?
To fix CVE-2006-5290, you should apply the latest firmware updates provided by Xerox for the affected WorkCentre models.
Which Xerox products are affected by CVE-2006-5290?
CVE-2006-5290 affects several models including Xerox WorkCentre 232, 238, 245, 255, 265, and 275.
What type of attack does CVE-2006-5290 enable?
CVE-2006-5290 enables attackers to bypass authentication and execute arbitrary code remotely.
Is CVE-2006-5290 a network vulnerability?
Yes, CVE-2006-5290 is a network vulnerability that exploits weaknesses in the web server components of affected Xerox devices.

collector/nvd-historical
collector/nvd-index
agent/references
agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/weakness
agent/severity
agent/author
agent/remedy
agent/tags
agent/last-modified-date
agent/description
agent/event
agent/first-publish-date
agent/source
vendor/xerox
canonical/xerox workcentre 255
canonical/xerox workcentre 245
canonical/xerox workcentre 238
canonical/xerox workcentre 232
canonical/xerox workcentre 265
canonical/xerox workcentre 275

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.

Frequently Asked Questions

What is the severity of CVE-2006-5290?
CVE-2006-5290 is considered to have a critical severity level due to its ability to allow remote code execution.
How do I fix CVE-2006-5290?
To fix CVE-2006-5290, you should apply the latest firmware updates provided by Xerox for the affected WorkCentre models.
Which Xerox products are affected by CVE-2006-5290?
CVE-2006-5290 affects several models including Xerox WorkCentre 232, 238, 245, 255, 265, and 275.
What type of attack does CVE-2006-5290 enable?
CVE-2006-5290 enables attackers to bypass authentication and execute arbitrary code remotely.
Is CVE-2006-5290 a network vulnerability?
Yes, CVE-2006-5290 is a network vulnerability that exploits weaknesses in the web server components of affected Xerox devices.

CVE-2006-5290: Command Injection

Remedy

Remedy

Remedy

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2006-5290?

How do I fix CVE-2006-5290?

Which Xerox products are affected by CVE-2006-5290?

What type of attack does CVE-2006-5290 enable?

Is CVE-2006-5290 a network vulnerability?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2006-5290?

How do I fix CVE-2006-5290?

Which Xerox products are affected by CVE-2006-5290?

What type of attack does CVE-2006-5290 enable?

Is CVE-2006-5290 a network vulnerability?