Description
Xerox MicroServer Web Server for various WorkCentre products including M35/M45/M55 2.028.11.000 through 2.97.20.032 and 4.84.16.000 through 4.97.20.032, Pro 35/45/55 3.028.11.000 through 3.97.20.032, Pro 65/75/90 1.001.00.060 through 1.001.02.084, and others, has an "unauthenticated account," which allows remote attackers to modify system configuration, a different vulnerability than CVE-2005-1179.
Product(s):
- Xerox WorkCentre 165
- Xerox WorkCentre 165 7.47.30.000
- Xerox WorkCentre 165 7.47.33.008
- Xerox WorkCentre 175
- Xerox WorkCentre 175 7.47.30.000
- Xerox WorkCentre 175 7.47.33.008 Professional
- Xerox WorkCentre 2128 Professional Color
- Xerox WorkCentre 2128 0.001.04.044 Professional Color
- Xerox WorkCentre 2636 Pro Color
- Xerox WorkCentre 2636 0.001.04.044 Pro Color
- Xerox WorkCentre 32 Color Pro
- Xerox WorkCentre 32 Color 0.001.00.060 Professional
- Xerox WorkCentre 32 Color 0.001.02.081 Professional
- Xerox WorkCentre 3545 Professional Color
- Xerox WorkCentre 3545 0.001.04.044 Professional Color
- Xerox WorkCentre 35 Professional
- Xerox WorkCentre 35 3.028.11.000 Professional
- Xerox WorkCentre 35 3.97.20.032 Professional
- Xerox WorkCentre 40 Color Professional
- Xerox WorkCentre 40 Color 0.001.00.060 Professional
- Xerox WorkCentre 40 Color 0.001.02.081 Professional
- Xerox WorkCentre 45 Professional
- Xerox WorkCentre 45 3.028.11.000 Professional
- Xerox WorkCentre 45 3.97.20.032 Professional
- Xerox WorkCentre 55 Professional
- Xerox WorkCentre 55 3.028.11.000 Professional
- Xerox WorkCentre 55 3.97.20.032 Professional
- Xerox WorkCentre 65 Pro
- Xerox WorkCentre 65 -Pro Edition
- Xerox WorkCentre 65 1.001.00.060 Pro
- Xerox WorkCentre 65 1.001.02.0715 Pro Edition
- Xerox WorkCentre 65 1.001.02.074 Pro Edition
- Xerox WorkCentre 65 1.001.02.084 Pro
- Xerox WorkCentre 75 Pro
- Xerox WorkCentre 75 Pro Edition
- Xerox WorkCentre 75 1.001.00.060 Pro
- Xerox WorkCentre 75 1.001.02.0715 Pro Edition
- Xerox WorkCentre 75 1.001.02.074 Pro Edition
- Xerox WorkCentre 75 1.001.02.084 Pro
- Xerox WorkCentre 90
- Xerox WorkCentre 90 Pro Edition
- Xerox WorkCentre 90 1.001.00.060
- Xerox WorkCentre 90 1.001.02.0715 Pro Edition
- Xerox WorkCentre 90 1.001.02.074 Pro Edition
- Xerox WorkCentre 90 1.001.02.084
- Xerox WorkCentre M165
- Xerox WorkCentre M165 6.47.30.000
- Xerox WorkCentre M165 6.47.33.008
- Xerox WorkCentre M165 8.47.30.000
- Xerox WorkCentre M165 8.47.33.008
- Xerox WorkCentre M175
- Xerox WorkCentre M175 6.47.30.000
- Xerox WorkCentre M175 6.47.33.008
- Xerox WorkCentre M175 8.47.30.000
- Xerox WorkCentre M175 8.47.33.008
- Xerox WorkCentre M35
- Xerox WorkCentre M35 2.28.11.000
- Xerox WorkCentre M35 2.97.20.032
- Xerox WorkCentre M35 4.84.16.000
- Xerox WorkCentre M35 4.97.20.025
- Xerox WorkCentre M35 4.97.20.032
- Xerox WorkCentre M45
- Xerox WorkCentre M45 2.28.11.000
- Xerox WorkCentre M45 2.97.20.032
- Xerox WorkCentre M45 4.84.16.000
- Xerox WorkCentre M45 4.97.20.025
- Xerox WorkCentre M45 4.97.20.032
- Xerox WorkCentre M55
- Xerox WorkCentre M55 2.28.11.000
- Xerox WorkCentre M55 2.97.20.032
- Xerox WorkCentre M55 4.84.16.000
- Xerox WorkCentre M55 4.97.20.025
- Xerox WorkCentre M55 4.97.20.032
Question to Ask Vendors:
- Can you confirm whether your systems are affected by CVE-2005-0703, and if so, what steps are you currently taking to mitigate this vulnerability?
- What is your estimated timeline for fully resolving CVE-2005-0703 in your products or services, and how will you communicate updates on this issue to us as your customer?
Recommended Actions:
- Check out the advisory links provided below.