Security Flaw in Xerox WorkCentre Products
CVE-2006-6468

Currently unrated

Key Information:

Vendor: Xerox
Status: Workcentre
Vendor: CVE Published:; 11 December 2006

Summary

Xerox WorkCentre and WorkCentre Pro devices prior to specified versions are susceptible to a vulnerability that fails to validate the Fully Qualified Domain Name (FQDN) during SSL certificate validation scans. This oversight could enable attackers to exploit spoofed SSL certificates, potentially leading to unauthorized access or data interception. Users of these devices should review their security configurations and apply necessary updates to mitigate any associated risks.

References

http://secunia.com/advisories/23265

third-party-advisoryx_refsource_SECUNIA

http://www.xerox.com/downloads/usa/en/c/cert_XRX06_004_v1...

x_refsource_CONFIRM

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Dec 11, 2006