Xerox WorkCentre Command Injection (XRX11-001)
Critical Nessus Plugin ID 51901
SynopsisThe remote multi-function device may allow arbitrary code execution.
DescriptionAccording to its model number and software version, the remote host is a Xerox WorkCentre device that reportedly allows an unauthenticated attacker to execute arbitrary code via specially crafted HTTP requests.
SolutionApply the P45 patch as described in the Xerox security bulletin.