Cross-Site Scripting in Xerox Document Centre Web Server
CVE-2005-2647

Currently unrated

Key Information:

Vendor: Xerox
Status: Document Centre 420; Document Centre 555; Document Centre 332; Document Centre 535
Vendor: CVE Published:; 23 August 2005

Summary

The Xerox MicroServer Web Server in various Document Centre models is susceptible to a cross-site scripting (XSS) vulnerability. This security flaw allows remote attackers to inject arbitrary web scripts or HTML into web pages, leading to potential unauthorized access and manipulation of the content. The vulnerability can be exploited through unspecified vectors, significantly impacting the integrity and confidentiality of user data.

References

http://securitytracker.com/id?1014720

vdb-entryx_refsource_SECTRACK

http://www.xerox.com/downloads/usa/en/c/cert_XRX05_008.pdf

x_refsource_CONFIRM

http://www.xerox.com/downloads/usa/en/c/cert_XRX05_009.pdf

x_refsource_CONFIRM

Timeline

Vulnerability published
Aug 23, 2005
Vulnerability Reserved
Aug 21, 2005