Vulnerabilities > CVE-2002-1835 - Unspecified vulnerability in Xerox Docutech 6110 and Docutech 6115

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

xerox

NVD

Published: 2002-12-31

Updated: 2008-09-05

Summary

The default configuration of Xerox DocuTech 6110 and DocuTech 6115 running Solaris 8.0 has a large number of unnecessary services enabled such as RPC and sprayd, which could allow remote attackers to obtain access to the device.

Vulnerable Configurations

Part	Description	Count
Hardware	Xerox Xerox Docutech 6110 * Xerox Docutech 6115 *	2

References

http://online.securityfocus.com/archive/1/273029
http://totally.righteous.net/jedgar/overview_of_security.pdf
http://www.iss.net/security_center/static/9108.php
http://www.securityfocus.com/bid/4765