Published: 06/04/2006 Updated: 18/10/2018

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 505

Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

Directory traversal vulnerability in the HP Color LaserJet 2500 Toolbox and Color LaserJet 4600 Toolbox on Microsoft Windows prior to 20060402 allows remote malicious users to read arbitrary files via a .. (dot dot) in an HTTP GET request to TCP port 5225.

Vulnerable Product	Search on Vulmon	Subscribe to Product
hp color laserjet 4600hdn
hp color laserjet 2500
hp color laserjet 2500 toolbox
hp color laserjet 4600 toolbox
hp color laserjet 2500n
hp color laserjet 2500tn
hp color laserjet 4600dn
hp color laserjet 4600dtn
hp color laserjet 4600
hp color laserjet 2500l
hp color laserjet 2500lse

source: wwwsecurityfocuscom/bid/17367/info The HP Color LaserJet 2500/4600 Toolbox is prone to a directory-traversal vulnerability This issue is due to a failure in the application to properly sanitize user-supplied input An attacker can exploit this vulnerability to retrieve arbitrary files from the vulnerable system in the context o ...

NVD-CWE-Other http://archives.neohapsis.com/archives/fulldisclosure/2006-04/0085.html http://www.securityfocus.com/bid/17367 http://securitytracker.com/id?1015862 http://secunia.com/advisories/19529 http://www.osvdb.org/24396 http://www.vupen.com/english/advisories/2006/1230 https://exchange.xforce.ibmcloud.com/vulnerabilities/25627 http://www.securityfocus.com/archive/1/429984/100/0/threaded http://www.securityfocus.com/archive/1/429893/100/0/threaded https://nvd.nist.gov https://www.exploit-db.com/exploits/27565/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2006-1654

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect