CVE-2010-0101

The embedded HTTP server in multiple Lexmark laser and inkjet printers and MarkNet devices, including X94x, W840, T656, N4000, E462, C935dn, 25xxN, and other models, allows remote attackers to cause a denial of service (operating system halt) via a malformed HTTP Authorization header.

CVSS v2.0 7.8 HIGH

7.8^/10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:L/Au:N/C:N/I:N/A:C

Exploitability : 10.0 / Impact : 6.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact COMPLETE

References

Link	Resource
http://support.lexmark.com/index?page=content&id=TE87&locale=EN&userlocale=EN_US	Vendor Advisory
http://support.lexmark.com/index?page=content&id=TE87&locale=EN&userlocale=EN_US	Vendor Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:h:lexmark:25xxn::::::::
	cpe:2.3:h:lexmark:c510::::::::
	cpe:2.3:h:lexmark:c52x::::::::
	cpe:2.3:h:lexmark:c53x::::::::
	cpe:2.3:h:lexmark:c540::::::::
	cpe:2.3:h:lexmark:c543::::::::
	cpe:2.3:h:lexmark:c544::::::::
	cpe:2.3:h:lexmark:c546::::::::
	cpe:2.3:h:lexmark:c73x::::::::
	cpe:2.3:h:lexmark:c77x::::::::
	cpe:2.3:h:lexmark:c78x::::::::
	cpe:2.3:h:lexmark:c920::::::::
	cpe:2.3:h:lexmark:c935dn::::::::
	cpe:2.3:h:lexmark:e120::::::::
	cpe:2.3:h:lexmark:e238::::::::
	cpe:2.3:h:lexmark:e23x::::::::
	cpe:2.3:h:lexmark:e240::::::::
	cpe:2.3:h:lexmark:e240n::::::::
	cpe:2.3:h:lexmark:e250::::::::
	cpe:2.3:h:lexmark:e260::::::::
	cpe:2.3:h:lexmark:e33x::::::::
	cpe:2.3:h:lexmark:e34x::::::::
	cpe:2.3:h:lexmark:e350::::::::
	cpe:2.3:h:lexmark:e360d::::::::
	cpe:2.3:h:lexmark:e360dn::::::::
	cpe:2.3:h:lexmark:e450::::::::
	cpe:2.3:h:lexmark:e460::::::::
	cpe:2.3:h:lexmark:e462::::::::
	cpe:2.3:h:lexmark:n4000::::::::
	cpe:2.3:h:lexmark:n4050e::::::::
	cpe:2.3:h:lexmark:n70xxe::::::::
	cpe:2.3:h:lexmark:n8120::::::::
	cpe:2.3:h:lexmark:n8130::::::::
	cpe:2.3:h:lexmark:t430::::::::
	cpe:2.3:h:lexmark:t64x::::::::
	cpe:2.3:h:lexmark:t650::::::::
	cpe:2.3:h:lexmark:t652::::::::
	cpe:2.3:h:lexmark:t654::::::::
	cpe:2.3:h:lexmark:t656::::::::
	cpe:2.3:h:lexmark:w840::::::::
	cpe:2.3:h:lexmark:w850::::::::
	cpe:2.3:h:lexmark:x20x::::::::
	cpe:2.3:h:lexmark:x26x::::::::
	cpe:2.3:h:lexmark:x34x::::::::
	cpe:2.3:h:lexmark:x36x::::::::
	cpe:2.3:h:lexmark:x422::::::::
	cpe:2.3:h:lexmark:x46x::::::::
	cpe:2.3:h:lexmark:x543::::::::
	cpe:2.3:h:lexmark:x544::::::::
	cpe:2.3:h:lexmark:x546::::::::
	cpe:2.3:h:lexmark:x642::::::::
	cpe:2.3:h:lexmark:x644::::::::
	cpe:2.3:h:lexmark:x646::::::::
	cpe:2.3:h:lexmark:x64xef::::::::
	cpe:2.3:h:lexmark:x65x::::::::
	cpe:2.3:h:lexmark:x73x::::::::
	cpe:2.3:h:lexmark:x772e::::::::
	cpe:2.3:h:lexmark:x782e::::::::
	cpe:2.3:h:lexmark:x85x::::::::
	cpe:2.3:h:lexmark:x86x::::::::
	cpe:2.3:h:lexmark:x94x::::::::

History

21 Nov 2024, 01:11

Type	Values Removed	Values Added
References	~~() http://support.lexmark.com/index?page=content&id=TE87&locale=EN&userlocale=EN_US - Vendor Advisory~~	() http://support.lexmark.com/index?page=content&id=TE87&locale=EN&userlocale=EN_US - Vendor Advisory

Information

Published : 2010-05-04 16:00

Updated : 2024-11-21 01:11

NVD link : CVE-2010-0101

Mitre link : CVE-2010-0101

CVE.ORG link : CVE-2010-0101

JSON object : View

Products Affected

lexmark

e250
e240n
x20x
c544
c52x
n70xxe
x36x
e360d
x73x
x86x
t656
x644
e238
e350
x772e
x646
e260
n4000
t650
x64xef
c53x
e120
x642
c540
n4050e
e360dn
t654
e33x
t64x
x26x
x34x
x544
c77x
e240
e460
e462
c78x
w850
c935dn
e34x
c546
n8130
c510
t652
c920
x85x
x65x
e450
n8120
c73x
x546
c543
x782e
e23x
x422
x543
t430
w840
x46x
25xxn
x94x

CWE

CWE-20

Improper Input Validation

7.8 /10