VRDA Feed by JPCERT/CC
  Vulnerability Response Decision Assistance Feed : Information for vulnerability impact analysis
[ about VRDA Feed | JPCERT/CC



 
Vulnerability Analysis Result (Revision No : 1) [ Download XML
CVE-2010-0101
e260, e360d, e360dn, e450, e460, e462, n4000, n4050e, n70xxe, n8120, n8130, t64x,...: The embedded HTTP server in multiple Lexmark laser ...
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-0101

Original

The embedded HTTP server in multiple Lexmark laser and inkjet printers and MarkNet devices, including X94x, W840, T656, N4000, E462, C935dn, 25xxN, and other models, allows remote attackers to cause a denial of service (operating system halt) via a malformed HTTP Authorization header.

Translation   (Show)





About This Analysis Information
Analysis Information Provider:
NIST NVD
First Published:
2010-05-04
Source Information Category:
Advisory, Alert
Last Updated:
2010-05-04




Affected Product Tags
cpe:/h:lexmark:e260
cpe:/h:lexmark:e360d
cpe:/h:lexmark:e360dn
cpe:/h:lexmark:e450
cpe:/h:lexmark:e460
cpe:/h:lexmark:e462
cpe:/h:lexmark:n4000
cpe:/h:lexmark:n4050e
cpe:/h:lexmark:n70xxe
cpe:/h:lexmark:n8120
cpe:/h:lexmark:n8130
cpe:/h:lexmark:t64x
cpe:/h:lexmark:t650
cpe:/h:lexmark:t652
cpe:/h:lexmark:t654
cpe:/h:lexmark:t656
cpe:/h:lexmark:w840
cpe:/h:lexmark:w850
cpe:/h:lexmark:x20x
cpe:/h:lexmark:x26x
cpe:/h:lexmark:x36x
cpe:/h:lexmark:x46x
cpe:/h:lexmark:x543
cpe:/h:lexmark:x544
cpe:/h:lexmark:x546
cpe:/h:lexmark:x642
cpe:/h:lexmark:x644
cpe:/h:lexmark:x646
cpe:/h:lexmark:x64xef
cpe:/h:lexmark:x65x
cpe:/h:lexmark:x73x
cpe:/h:lexmark:x772e
cpe:/h:lexmark:x782e
cpe:/h:lexmark:x85x
cpe:/h:lexmark:x86x
cpe:/h:lexmark:x94x
 


Vulnerability Analysis Results
[Access Vector]  [?]
Undefined [?]

Local [?]
Adjacent Network [?]
X Network [?]
[Access Complexit]  [?]
Undefined [?]

High [?]
Medium [?]
X Low [?]
[Authentication]  [?]
Undefined [?]

Multiple [?]
Single [?]
X None [?]
[Confidentiality Impact]  [?]
Undefined [?]

X None [?]
Partial [?]
Complete [?]
[Integrity Impact]  [?]
Undefined [?]

X None [?]
Partial [?]
Complete [?]
[Availability Impact]  [?]
Undefined [?]

None [?]
Partial [?]
X Complete [?]
Alternatives




References
CONFIRM http://support.lexmark.com/index?page=content&id=TE87&locale=EN&userlocale=EN_US




Vulnerability Type Input Validation (CWE-20)




Copyright © 2010 JPCERT/CC All Rights Reserved.