Vulnerability Details CVE-2006-4680
The Remote UI in Canon imageRUNNER includes usernames and passwords when exporting an address book, which allows context-dependent attackers to obtain sensitive information.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 66.4%
CVSS Severity
CVSS v2 Score 4.0
References
- http://secunia.com/advisories/21788
- http://securityreason.com/securityalert/1538
- http://www.securityfocus.com/archive/1/445302/100/0/threaded
- http://www.securityfocus.com/archive/1/445532/100/0/threaded
- http://www.securityfocus.com/bid/19865
- http://www.vupen.com/english/advisories/2006/3501
- https://exchange.xforce.ibmcloud.com/vulnerabilities/28795
- http://secunia.com/advisories/21788
- http://securityreason.com/securityalert/1538
- http://www.securityfocus.com/archive/1/445302/100/0/threaded
- http://www.securityfocus.com/archive/1/445532/100/0/threaded
- http://www.securityfocus.com/bid/19865
- http://www.vupen.com/english/advisories/2006/3501
- https://exchange.xforce.ibmcloud.com/vulnerabilities/28795
Products affected by CVE-2006-4680
-
cpe:2.3:a:canon:imagerunner_2620:-
-
cpe:2.3:a:canon:imagerunner_5020:-
-
cpe:2.3:a:canon:imagerunner_6870:-
-
cpe:2.3:a:canon:imagerunner_8500:-
-
cpe:2.3:a:canon:imagerunner_9070:-
-
cpe:2.3:a:canon:imagerunner_c3220:-
-
cpe:2.3:a:canon:imagerunner_c6800:-