Insecure NFS Configuration in Xerox DocuTech 6110 and 6115 Devices
CVE-2002-1836

Currently unrated

Key Information:

Vendor: Xerox
Status: Docutech 6110; Docutech 6115
Vendor: CVE Published:; 31 December 2002

What is CVE-2002-1836?

The default configuration of Xerox DocuTech 6110 and 6115 exposes certain Network File System (NFS) shares to the public with world writable permissions. This misconfiguration creates a significant security risk, as it permits unauthorized remote attackers to potentially modify or delete sensitive files on the device, leading to data integrity issues and exposure of confidential information.

References

http://totally.righteous.net/jedgar/overview_of_security.pdf

x_refsource_CONFIRM

http://www.securityfocus.com/bid/4765

vdb-entryx_refsource_BID

http://www.iss.net/security_center/static/9108.php

vdb-entryx_refsource_XF

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Dec 31, 2002