var-201003-0256
Vulnerability from variot
The flood-protection feature in the base, IPDS DLE, Forms DLE, Barcode DLE, Prescribe DLE, and Printcryption DLE components on certain Lexmark laser and inkjet printers and MarkNet devices allows remote attackers to cause a denial of service (TCP outage) by making many passive FTP connections and then aborting these connections. (TCP Stop function ) There is a possibility of being put into a state. Lexmark laser printers are popular printer devices. Some of the Lemark printers and MarkNet devices contain a security vulnerability in the FTP service. A remote attacker can submit a special request that causes the printer FTP to stop responding. Duplicate requests can cause the printer to ignore inbound TCP network connections to other services. Lexmark products implement a \"flood flood\" attack protection mechanism by limiting the number of simultaneous network connections. This protection mechanism is implemented on most TCP service ports (21/FTP 79/Finger, 515/LPD, 631/IPP, 5001, 9100-9104). , 9200, 9300, 9400, 9500-9501 & 9600). However, when the passive FTP connection is dropped, the FTP service exception handler does not properly maintain the \"flood flood\" protection status. Once enough passive FTP connections are timed out (usually 15), the \"flood flood\" attack protection will be enabled. Was reset. Exploiting this issue allows remote attackers to cause the device to enable flood protection indefinitely, effectively denying service to legitimate users.
Please see the vendor advisory for a list of affected products and versions.
SOLUTION: Please see the vendor advisory for details on how to obtain an updated firmware or to apply a workaround.
PROVIDED AND/OR DISCOVERED BY: Francis Provencher, Protek Research Lab's
ORIGINAL ADVISORY: Lexmark: http://support.lexmark.com/index?page=content&id=TE85&locale=EN&userlocale=EN_US
Protek Research Lab's: http://www.protekresearchlab.com/index.php?option=com_content&view=article&id=11&Itemid=11
About: This Advisory was delivered by Secunia as a free service to help private users keeping their systems up to date against the latest vulnerabilities.
Subscribe: http://secunia.com/advisories/secunia_security_advisories/
Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/
Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor.
Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org
Show details on source website{
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
"affected_products": {
"@id": "https://www.variotdbs.pl/ref/affected_products"
},
"configurations": {
"@id": "https://www.variotdbs.pl/ref/configurations"
},
"credits": {
"@id": "https://www.variotdbs.pl/ref/credits"
},
"cvss": {
"@id": "https://www.variotdbs.pl/ref/cvss/"
},
"description": {
"@id": "https://www.variotdbs.pl/ref/description/"
},
"exploit_availability": {
"@id": "https://www.variotdbs.pl/ref/exploit_availability/"
},
"external_ids": {
"@id": "https://www.variotdbs.pl/ref/external_ids/"
},
"iot": {
"@id": "https://www.variotdbs.pl/ref/iot/"
},
"iot_taxonomy": {
"@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
},
"patch": {
"@id": "https://www.variotdbs.pl/ref/patch/"
},
"problemtype_data": {
"@id": "https://www.variotdbs.pl/ref/problemtype_data/"
},
"references": {
"@id": "https://www.variotdbs.pl/ref/references/"
},
"sources": {
"@id": "https://www.variotdbs.pl/ref/sources/"
},
"sources_release_date": {
"@id": "https://www.variotdbs.pl/ref/sources_release_date/"
},
"sources_update_date": {
"@id": "https://www.variotdbs.pl/ref/sources_update_date/"
},
"threat_type": {
"@id": "https://www.variotdbs.pl/ref/threat_type/"
},
"title": {
"@id": "https://www.variotdbs.pl/ref/title/"
},
"type": {
"@id": "https://www.variotdbs.pl/ref/type/"
}
},
"@id": "https://www.variotdbs.pl/vuln/VAR-201003-0256",
"affected_products": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/affected_products#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"model": "z2420",
"scope": null,
"trust": 1.4,
"vendor": "lexmark",
"version": null
},
{
"model": "z2420",
"scope": "eq",
"trust": 1.0,
"vendor": "lexmark",
"version": "*"
},
{
"model": "z15xx net.mh.n206",
"scope": null,
"trust": 0.9,
"vendor": "lexmark",
"version": null
},
{
"model": "z2420 net.ar.n204",
"scope": null,
"trust": 0.9,
"vendor": "lexmark",
"version": null
},
{
"model": "z1420 net.mh.n206",
"scope": null,
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "net.ch.n208",
"scope": "eq",
"trust": 0.3,
"vendor": "lexmark",
"version": "x9575"
},
{
"model": "lc.br.p049",
"scope": "eq",
"trust": 0.3,
"vendor": "lexmark",
"version": "x94x"
},
{
"model": "lc.da.p076",
"scope": "eq",
"trust": 0.3,
"vendor": "lexmark",
"version": "x9350"
},
{
"model": "lp.sp.p112",
"scope": "eq",
"trust": 0.3,
"vendor": "lexmark",
"version": "x86x"
},
{
"model": "lc4.be.p457",
"scope": "eq",
"trust": 0.3,
"vendor": "lexmark",
"version": "x85x"
},
{
"model": "x782e lc2.to.p305c",
"scope": null,
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "x772e lc.tr.p275",
"scope": null,
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "net.ch.n208",
"scope": "eq",
"trust": 0.3,
"vendor": "lexmark",
"version": "x7675"
},
{
"model": "net.mh.n206",
"scope": "eq",
"trust": 0.3,
"vendor": "lexmark",
"version": "x7550"
},
{
"model": "lr.fl.p224b",
"scope": "eq",
"trust": 0.3,
"vendor": "lexmark",
"version": "x73x"
},
{
"model": "net.ar.n204",
"scope": "eq",
"trust": 0.3,
"vendor": "lexmark",
"version": "x6650"
},
{
"model": "lr.mn.p224a",
"scope": "eq",
"trust": 0.3,
"vendor": "lexmark",
"version": "x65x"
},
{
"model": "net.mh.n206",
"scope": "eq",
"trust": 0.3,
"vendor": "lexmark",
"version": "x6570"
},
{
"model": "x64xef lc2.ti.p305a",
"scope": null,
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "lc2.mc.p307a",
"scope": "eq",
"trust": 0.3,
"vendor": "lexmark",
"version": "x646"
},
{
"model": "lc2.mc.p307a",
"scope": "eq",
"trust": 0.3,
"vendor": "lexmark",
"version": "x644"
},
{
"model": "lc2.mb.p307b",
"scope": "eq",
"trust": 0.3,
"vendor": "lexmark",
"version": "x642"
},
{
"model": "ll.el.p424",
"scope": "eq",
"trust": 0.3,
"vendor": "lexmark",
"version": "x544"
},
{
"model": "ll.el.p424",
"scope": "eq",
"trust": 0.3,
"vendor": "lexmark",
"version": "x543"
},
{
"model": "x4975ve net.ch.n208",
"scope": null,
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "net.ar.n204",
"scope": "eq",
"trust": 0.3,
"vendor": "lexmark",
"version": "x4975"
},
{
"model": "net.mh.n206",
"scope": "eq",
"trust": 0.3,
"vendor": "lexmark",
"version": "x4875"
},
{
"model": "lr.bs.p224a",
"scope": "eq",
"trust": 0.3,
"vendor": "lexmark",
"version": "x46x"
},
{
"model": "net.ar.n204",
"scope": "eq",
"trust": 0.3,
"vendor": "lexmark",
"version": "x4650"
},
{
"model": "net.mh.n206",
"scope": "eq",
"trust": 0.3,
"vendor": "lexmark",
"version": "x4550"
},
{
"model": "gn.aq.p202",
"scope": "eq",
"trust": 0.3,
"vendor": "lexmark",
"version": "x422"
},
{
"model": "ll.bz.p424",
"scope": "eq",
"trust": 0.3,
"vendor": "lexmark",
"version": "x36x"
},
{
"model": "401.ec4",
"scope": "eq",
"trust": 0.3,
"vendor": "lexmark",
"version": "x34x"
},
{
"model": "ll.bz.p424",
"scope": "eq",
"trust": 0.3,
"vendor": "lexmark",
"version": "x26x"
},
{
"model": "lm1.mt.p110h",
"scope": "eq",
"trust": 0.3,
"vendor": "lexmark",
"version": "x20x"
},
{
"model": "w850 lp.jb.p108ws",
"scope": null,
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "w840 ls.ha.p121",
"scope": null,
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "t656 lsj.sj.p019",
"scope": null,
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "t654 lr.jp.p224a",
"scope": null,
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "t652 lr.jp.p224a",
"scope": null,
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "t650 lr.jp.p224a",
"scope": null,
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "t64x ls.st.p240",
"scope": null,
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "t430 jx.ju.p101",
"scope": null,
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "n8130 nr.aps.n368",
"scope": null,
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "n8120 nr.aps.n368",
"scope": null,
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "n70xxe lc.co.n054",
"scope": null,
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "n4050e go.go.n106",
"scope": null,
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "n4000 ph2.me.n134",
"scope": null,
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "e462 lr.lbh.p224cws",
"scope": null,
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "e460 lr.lbh.p224a",
"scope": null,
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "e450 lm.sz.p113vcref",
"scope": null,
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "e360dn ll.lbm.p424",
"scope": null,
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "e360d ll.lbl.p424",
"scope": null,
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "e350 le.ph.p121",
"scope": null,
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "e34x br.h.p204",
"scope": null,
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "e33x 141.c09",
"scope": null,
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "e260 ll.lbl.p424",
"scope": null,
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "e250 le.pm.p121",
"scope": null,
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "e240n br.q.p204",
"scope": null,
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "e240 br.m.p204",
"scope": null,
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "e23x 141.c09",
"scope": null,
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "e238 br.m.p204",
"scope": null,
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "e120 le.ul.p040",
"scope": null,
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "c935dn lc.jo.p051",
"scope": null,
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "c920 ls.ta.p127",
"scope": null,
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "c78x lc.io.p165a",
"scope": null,
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "c77x lc.cm.p027b",
"scope": null,
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "c73x lr.sk.p224a",
"scope": null,
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "c546 lu.as.p424",
"scope": null,
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "c544 ll.as.p424",
"scope": null,
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "c543 ll.as.p424",
"scope": null,
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "c540 ll.as.p424",
"scope": null,
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "c53x ls.sw.p026avc",
"scope": null,
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "c52x ls.fa.p129",
"scope": null,
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "c510",
"scope": "eq",
"trust": 0.3,
"vendor": "lexmark",
"version": "891.004"
},
{
"model": "25xxn lcl.cu.p105",
"scope": null,
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "z2420 net.ar.n205",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "z15xx net.mh.n207",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "z1420 net.mh.n207",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "net.ch.n209",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": "x9575"
},
{
"model": "lc.br.p051hds1",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": "x94x"
},
{
"model": "lc.br.p051hds",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": "x94x"
},
{
"model": "lc.da.p077",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": "x9350"
},
{
"model": "lp.lp.p311h",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": "x86x"
},
{
"model": "lp.lp.p311e",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": "x86x"
},
{
"model": "lc4.be.p457s1",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": "x85x"
},
{
"model": "lc4.be.p457s",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": "x85x"
},
{
"model": "x782e lc2.to.p305cs1",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "x782e lc2.to.p305cs",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "x772e lc2.tr.p275s1",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "x772e lc2.tr.p275s",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "net.ch.n209",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": "x7675"
},
{
"model": "net.mh.n207",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": "x7550"
},
{
"model": "lr.fl.p311h",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": "x73x"
},
{
"model": "lr.fl.p311e",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": "x73x"
},
{
"model": "net.ar.n205",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": "x6650"
},
{
"model": "lr.mn.p311h",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": "x65x"
},
{
"model": "lr.mn.p311e",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": "x65x"
},
{
"model": "net.mh.n207",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": "x6570"
},
{
"model": "x64xef lc2.ti.p305as1",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "x64xef lc2.ti.p305as",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "lc2.mc.p307as1",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": "x646"
},
{
"model": "lc2.mc.p307as",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": "x646"
},
{
"model": "lc2.mc.p307as1",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": "x644"
},
{
"model": "lc2.mc.p307as",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": "x644"
},
{
"model": "lc2.mb.p307bs1",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": "x642"
},
{
"model": "lc2.mb.p307bs",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": "x642"
},
{
"model": "ll.el.p429a",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": "x544"
},
{
"model": "ll.el.p429a",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": "x543"
},
{
"model": "x4975ve net.ch.n209",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "net.ar.n205",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": "x4975"
},
{
"model": "net.mh.n207",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": "x4875"
},
{
"model": "lr.bs.p311h",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": "x46x"
},
{
"model": "lr.bs.p311e",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": "x46x"
},
{
"model": "net.ar.n205",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": "x4650"
},
{
"model": "net.mh.n207",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": "x4550"
},
{
"model": "ll.bz.p429a",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": "x36x"
},
{
"model": "ll.bz.p429a",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": "x26x"
},
{
"model": "lm1.mt.p214",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": "x20x"
},
{
"model": "w850 lp.jb.p311h",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "w850 lp.jb.p311e",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "w840 ls.ha.p225s",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "w840 ls.ha.p121s1",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "w840 ls.ha.p121s",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "t656 lsj.sj.p019s",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "t654 lr.jp.p311h",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "t654 lr.jp.p311e",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "t652 lr.jp.p311h",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "t652 lr.jp.p311e",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "t650 lr.jp.p311h",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "t650 lr.jp.p311e",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "t64x ls.st.p240s1",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "t64x ls.st.p240s",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "n8130 nr.aps.447c",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "n8120 nr.aps.447c",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "n70xxe lc.co.n069",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "n4050e go.go.n206",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "n4000 lc.md.p012d",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "e462 lr.lbh.p311h",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "e462 lr.lbh.p311e",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "e460 lr.lbh.p311h",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "e460 lr.lbh.p311e",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "e450 lm.sz.p113vcres1",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "e450 lm.sz.p113vcres",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "e360dn ll.lbm.p429a",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "e360d ll.lbl.p429a",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "e260 ll.lbl.p429a",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "c935dn lc.jo.p051s1",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "c935dn lc.jo.p051s",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "c920 ls.ta.p127s",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "c920 ls.ta.p127eps",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "c78x lc.io.p165as1",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "c78x lc.io.p165as",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "c77x lc.cm.p027bs1",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "c77x lc.cm.p027bs",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "c73x lr.sk.p311h",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "c73x lr.sk.p311e",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "c546 lu.as.p429a",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "c544 ll.as.p429a",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "c543 ll.as.p429a",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "c540 ll.as.p429a",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "c53x ls.sw.p027lpcs",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "c53x ls.sw.p026avcs1",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "c53x ls.sw.p026avcs",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "c52x ls.fa.p129s1",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "c52x ls.fa.p129s",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "c52x ls.fa.p129lpcs",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": null
},
{
"model": "25xxn lc.cu.p106",
"scope": "ne",
"trust": 0.3,
"vendor": "lexmark",
"version": null
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2010-0415"
},
{
"db": "BID",
"id": "38906"
},
{
"db": "JVNDB",
"id": "JVNDB-2010-004500"
},
{
"db": "CNNVD",
"id": "CNNVD-201003-332"
},
{
"db": "NVD",
"id": "CVE-2010-0618"
}
]
},
"configurations": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/configurations#",
"children": {
"@container": "@list"
},
"cpe_match": {
"@container": "@list"
},
"data": {
"@container": "@list"
},
"nodes": {
"@container": "@list"
}
},
"data": [
{
"CVE_data_version": "4.0",
"nodes": [
{
"cpe_match": [
{
"cpe22Uri": "cpe:/h:lexmark:z2420",
"vulnerable": true
}
],
"operator": "OR"
}
]
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2010-004500"
}
]
},
"credits": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/credits#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Francis Provencher",
"sources": [
{
"db": "PACKETSTORM",
"id": "87592"
},
{
"db": "CNNVD",
"id": "CNNVD-201003-332"
}
],
"trust": 0.7
},
"cve": "CVE-2010-0618",
"cvss": {
"@context": {
"cvssV2": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
},
"cvssV3": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
},
"severity": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/cvss/severity#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/severity"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"cvssV2": [
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "nvd@nist.gov",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"exploitabilityScore": 10.0,
"id": "CVE-2010-0618",
"impactScore": 2.9,
"integrityImpact": "NONE",
"severity": "MEDIUM",
"trust": 1.8,
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
}
],
"cvssV3": [],
"severity": [
{
"author": "nvd@nist.gov",
"id": "CVE-2010-0618",
"trust": 1.0,
"value": "MEDIUM"
},
{
"author": "NVD",
"id": "CVE-2010-0618",
"trust": 0.8,
"value": "Medium"
},
{
"author": "CNNVD",
"id": "CNNVD-201003-332",
"trust": 0.6,
"value": "MEDIUM"
}
]
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2010-004500"
},
{
"db": "CNNVD",
"id": "CNNVD-201003-332"
},
{
"db": "NVD",
"id": "CVE-2010-0618"
}
]
},
"description": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/description#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "The flood-protection feature in the base, IPDS DLE, Forms DLE, Barcode DLE, Prescribe DLE, and Printcryption DLE components on certain Lexmark laser and inkjet printers and MarkNet devices allows remote attackers to cause a denial of service (TCP outage) by making many passive FTP connections and then aborting these connections. (TCP Stop function ) There is a possibility of being put into a state. Lexmark laser printers are popular printer devices. Some of the Lemark printers and MarkNet devices contain a security vulnerability in the FTP service. A remote attacker can submit a special request that causes the printer FTP to stop responding. Duplicate requests can cause the printer to ignore inbound TCP network connections to other services. Lexmark products implement a \\\"flood flood\\\" attack protection mechanism by limiting the number of simultaneous network connections. This protection mechanism is implemented on most TCP service ports (21/FTP 79/Finger, 515/LPD, 631/IPP, 5001, 9100-9104). , 9200, 9300, 9400, 9500-9501 \u0026 9600). However, when the passive FTP connection is dropped, the FTP service exception handler does not properly maintain the \\\"flood flood\\\" protection status. Once enough passive FTP connections are timed out (usually 15), the \\\"flood flood\\\" attack protection will be enabled. Was reset. \nExploiting this issue allows remote attackers to cause the device to enable flood protection indefinitely, effectively denying service to legitimate users. \n\nPlease see the vendor advisory for a list of affected products and\nversions. \n\nSOLUTION:\nPlease see the vendor advisory for details on how to obtain an\nupdated firmware or to apply a workaround. \n\nPROVIDED AND/OR DISCOVERED BY:\nFrancis Provencher, Protek Research Lab\u0027s\n\nORIGINAL ADVISORY:\nLexmark:\nhttp://support.lexmark.com/index?page=content\u0026id=TE85\u0026locale=EN\u0026userlocale=EN_US\n\nProtek Research Lab\u0027s:\nhttp://www.protekresearchlab.com/index.php?option=com_content\u0026view=article\u0026id=11\u0026Itemid=11\n\n----------------------------------------------------------------------\n\nAbout:\nThis Advisory was delivered by Secunia as a free service to help\nprivate users keeping their systems up to date against the latest\nvulnerabilities. \n\nSubscribe:\nhttp://secunia.com/advisories/secunia_security_advisories/\n\nDefinitions: (Criticality, Where etc.)\nhttp://secunia.com/advisories/about_secunia_advisories/\n\n\nPlease Note:\nSecunia recommends that you verify all advisories you receive by\nclicking the link. \nSecunia NEVER sends attached files with advisories. \nSecunia does not advise people to install third party patches, only\nuse those supplied by the vendor. \n\n----------------------------------------------------------------------\n\nUnsubscribe: Secunia Security Advisories\nhttp://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org\n\n----------------------------------------------------------------------\n\n\n",
"sources": [
{
"db": "NVD",
"id": "CVE-2010-0618"
},
{
"db": "JVNDB",
"id": "JVNDB-2010-004500"
},
{
"db": "CNVD",
"id": "CNVD-2010-0415"
},
{
"db": "BID",
"id": "38906"
},
{
"db": "PACKETSTORM",
"id": "87613"
}
],
"trust": 2.52
},
"external_ids": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/external_ids#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"db": "NVD",
"id": "CVE-2010-0618",
"trust": 3.4
},
{
"db": "BID",
"id": "38906",
"trust": 1.9
},
{
"db": "SECUNIA",
"id": "39056",
"trust": 1.1
},
{
"db": "JVNDB",
"id": "JVNDB-2010-004500",
"trust": 0.8
},
{
"db": "CNVD",
"id": "CNVD-2010-0415",
"trust": 0.6
},
{
"db": "BUGTRAQ",
"id": "20100322 {PRL} LEXMARK MULTIPLE LASER PRINTER FTP REMOTE DENIAL OF SERVICES",
"trust": 0.6
},
{
"db": "NSFOCUS",
"id": "14689",
"trust": 0.6
},
{
"db": "CNNVD",
"id": "CNNVD-201003-332",
"trust": 0.6
},
{
"db": "PACKETSTORM",
"id": "87613",
"trust": 0.1
},
{
"db": "PACKETSTORM",
"id": "87592",
"trust": 0.1
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2010-0415"
},
{
"db": "BID",
"id": "38906"
},
{
"db": "JVNDB",
"id": "JVNDB-2010-004500"
},
{
"db": "PACKETSTORM",
"id": "87613"
},
{
"db": "PACKETSTORM",
"id": "87592"
},
{
"db": "CNNVD",
"id": "CNNVD-201003-332"
},
{
"db": "NVD",
"id": "CVE-2010-0618"
}
]
},
"id": "VAR-201003-0256",
"iot": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": true,
"sources": [
{
"db": "CNVD",
"id": "CNVD-2010-0415"
}
],
"trust": 1.2875
},
"iot_taxonomy": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"category": [
"Network device"
],
"sub_category": null,
"trust": 0.6
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2010-0415"
}
]
},
"last_update_date": "2024-11-23T22:39:23.929000Z",
"patch": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/patch#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"title": "TE85",
"trust": 0.8,
"url": "http://support.lexmark.com/index?page=content\u0026id=TE85\u0026locale=EN\u0026userlocale=EN_US"
},
{
"title": "Lexmark Laser Printer FTP Service Remote Denial of Service Vulnerability Patch",
"trust": 0.6,
"url": "https://www.cnvd.org.cn/patchInfo/show/2227"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2010-0415"
},
{
"db": "JVNDB",
"id": "JVNDB-2010-004500"
}
]
},
"problemtype_data": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"problemtype": "NVD-CWE-Other",
"trust": 1.0
},
{
"problemtype": "CWE-Other",
"trust": 0.8
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2010-004500"
},
{
"db": "NVD",
"id": "CVE-2010-0618"
}
]
},
"references": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/references#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"trust": 2.6,
"url": "http://support.lexmark.com/index?page=content\u0026id=te85\u0026locale=en\u0026userlocale=en_us"
},
{
"trust": 1.6,
"url": "http://www.securityfocus.com/bid/38906"
},
{
"trust": 1.1,
"url": "http://www.protekresearchlab.com/index.php?option=com_content\u0026view=article\u0026id=11\u0026itemid=11"
},
{
"trust": 1.0,
"url": "http://www.securityfocus.com/archive/1/510285/100/0/threaded"
},
{
"trust": 1.0,
"url": "http://secunia.com/advisories/39056"
},
{
"trust": 0.8,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2010-0618"
},
{
"trust": 0.8,
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2010-0618"
},
{
"trust": 0.6,
"url": "http://www.securityfocus.com/archive/1/archive/1/510285/100/0/threaded"
},
{
"trust": 0.6,
"url": "http://www.nsfocus.net/vulndb/14689"
},
{
"trust": 0.3,
"url": "http://www.lexmark.com/"
},
{
"trust": 0.3,
"url": "/archive/1/510285"
},
{
"trust": 0.1,
"url": "http://secunia.com/advisories/39056/"
},
{
"trust": 0.1,
"url": "http://secunia.com/advisories/secunia_security_advisories/"
},
{
"trust": 0.1,
"url": "http://secunia.com/vulnerability_scanning/corporate/wsus_sccm_3rd_third_party_patching/"
},
{
"trust": 0.1,
"url": "http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org"
},
{
"trust": 0.1,
"url": "http://secunia.com/advisories/about_secunia_advisories/"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov/vuln/detail/cve-2010-0618"
},
{
"trust": 0.1,
"url": "http://www.protekresearchlab.com"
},
{
"trust": 0.1,
"url": "http://support.lexmark.com/alerts"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2010-0415"
},
{
"db": "BID",
"id": "38906"
},
{
"db": "JVNDB",
"id": "JVNDB-2010-004500"
},
{
"db": "PACKETSTORM",
"id": "87613"
},
{
"db": "PACKETSTORM",
"id": "87592"
},
{
"db": "CNNVD",
"id": "CNNVD-201003-332"
},
{
"db": "NVD",
"id": "CVE-2010-0618"
}
]
},
"sources": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#",
"data": {
"@container": "@list"
}
},
"data": [
{
"db": "CNVD",
"id": "CNVD-2010-0415"
},
{
"db": "BID",
"id": "38906"
},
{
"db": "JVNDB",
"id": "JVNDB-2010-004500"
},
{
"db": "PACKETSTORM",
"id": "87613"
},
{
"db": "PACKETSTORM",
"id": "87592"
},
{
"db": "CNNVD",
"id": "CNNVD-201003-332"
},
{
"db": "NVD",
"id": "CVE-2010-0618"
}
]
},
"sources_release_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2010-03-23T00:00:00",
"db": "CNVD",
"id": "CNVD-2010-0415"
},
{
"date": "2010-03-23T00:00:00",
"db": "BID",
"id": "38906"
},
{
"date": "2012-09-25T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2010-004500"
},
{
"date": "2010-03-24T11:24:50",
"db": "PACKETSTORM",
"id": "87613"
},
{
"date": "2010-03-24T15:58:08",
"db": "PACKETSTORM",
"id": "87592"
},
{
"date": "2010-03-24T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201003-332"
},
{
"date": "2010-03-24T22:45:15.937000",
"db": "NVD",
"id": "CVE-2010-0618"
}
]
},
"sources_update_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2010-03-23T00:00:00",
"db": "CNVD",
"id": "CNVD-2010-0415"
},
{
"date": "2015-03-19T09:42:00",
"db": "BID",
"id": "38906"
},
{
"date": "2012-09-25T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2010-004500"
},
{
"date": "2010-03-25T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201003-332"
},
{
"date": "2024-11-21T01:12:35.507000",
"db": "NVD",
"id": "CVE-2010-0618"
}
]
},
"threat_type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/threat_type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "remote",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201003-332"
}
],
"trust": 0.6
},
"title": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/title#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "specific Lexmark Service disruption in flood protection function of laser printer (DoS) Vulnerabilities",
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2010-004500"
}
],
"trust": 0.8
},
"type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "other",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201003-332"
}
],
"trust": 0.6
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.