Information Disclosure Vulnerability in Canon imageRUNNER Devices
CVE-2006-4680

Currently unrated

Key Information:

Vendor

Canon

Status
Imagerunner C6800
Imagerunner 8500
Imagerunner 9070
Imagerunner 6870
Vendor
CVE Published:
11 September 2006

What is CVE-2006-4680?

The Remote User Interface (UI) of Canon imageRUNNER devices inadvertently includes usernames and passwords within the exported address book files. This flaw allows malicious actors, with access to the exported data, to retrieve sensitive user credentials, potentially leading to unauthorized access to network resources. Proper safeguards should be implemented to enhance data protection and prevent such exposure.

References

http://www.securityfocus.com/archive/1/445532/100/0/threaded
mailing-listx_refsource_BUGTRAQ
http://www.vupen.com/english/advisories/2006/3501
vdb-entryx_refsource_VUPEN
http://www.securityfocus.com/archive/1/445302/100/0/threaded
mailing-listx_refsource_BUGTRAQ

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.