CVE-2010-0549

Xerox WorkCentre 6400 Exposure of Sensitive Information via Crafted PostScript File

Title source: llm
STIX 2.1

Description

Unspecified vulnerability in the Network Controller in Xerox WorkCentre 6400 System Software 060.070.109.11407 through 060.070.109.29510, and Net Controller 060.079.11410 through 060.079.29310, allows remote attackers to access "directory structure" via a crafted PostScript file, aka "Unauthorized Directory Structure Access Vulnerability."

References (4)

Core 4
Core References
Patch, Vendor Advisory x_refsource_confirm
http://www.xerox.com/downloads/usa/en/c/cert_XRX10-001_v1.0.pdf
Vendor Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2010/0208
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id?1023500
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/38339

Scores

EPSS 0.0123
EPSS Percentile 65.3%

Details

CWE
CWE-200
Status published
Products (4)
xerox/workcentre_6400_net_controller 060.079.11410
xerox/workcentre_6400_net_controller 060.079.29310
xerox/workcentre_6400_system_software 060.070.109.11407
xerox/workcentre_6400_system_software 060.070.109.29510
Published Feb 04, 2010
Tracked Since Feb 18, 2026