CVE-2006-6430
First published: Sun Dec 10 2006(Updated: )
Web services in Xerox WorkCentre and WorkCentre Pro before 12.060.17.000, 13.x before 13.060.17.000, and 14.x before 14.060.17.000 do not require HTTPS, which allows remote attackers to obtain sensitive information by sniffing the unencrypted HTTP traffic.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Xerox Workcentre 255 | ||
| Xerox Workcentre 245 | ||
| Xerox Workcentre 238 | ||
| Xerox Workcentre 232 | ||
| Xerox Workcentre 232 | ||
| Xerox Workcentre 265 | ||
| Xerox Workcentre 245 | ||
| Xerox Workcentre 238 | ||
| Xerox Workcentre 275 | ||
| Xerox Workcentre 255 | ||
| Xerox Workcentre 275 | ||
| Xerox Workcentre 265 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-historical
- collector/nvd-index
- agent/severity
- agent/references
- agent/weakness
- agent/author
- agent/type
- agent/description
- agent/event
- agent/last-modified-date
- agent/first-publish-date
- agent/softwarecombine
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/xerox
- canonical/xerox workcentre 255
- canonical/xerox workcentre 245
- canonical/xerox workcentre 238
- canonical/xerox workcentre 232
- canonical/xerox workcentre 265
- canonical/xerox workcentre 275