Sign-up

ID

VAR-201003-0257


CVE

CVE-2010-0619


TITLE

specific Lexmark Laser printer stack-based buffer overflow vulnerability

Trust: 0.8

sources: JVNDB: JVNDB-2010-004501

DESCRIPTION

Stack-based buffer overflow in the base, IPDS DLE, Forms DLE, Barcode DLE, Prescribe DLE, and Printcryption DLE components on certain Lexmark laser printers and multi-function printers allows remote attackers to execute arbitrary code or cause a denial of service (device hang) via a long argument to a PJL INQUIRE command. Lexmark laser printers are popular printer devices. The attacker submits a specially constructed PJL command to the printer, which can inject information into the embedded microprocessor stack, and successfully exploit the vulnerability to execute arbitrary code on the affected printer. Multiple Lexmark laser printers are prone to a remote stack-based buffer-overflow vulnerability because the devices fail to perform adequate boundary checks on user-supplied data. Attackers can exploit this issue to execute arbitrary code. Failed exploit attempts will result in a denial-of-service condition

Trust: 2.43

sources: NVD: CVE-2010-0619 // JVNDB: JVNDB-2010-004501 // CNVD: CNVD-2010-0414 // BID: 38901

IOT TAXONOMY

category:['Network device']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2010-0414

AFFECTED PRODUCTS

vendor:lexmarkmodel:x94xscope: - version: -

Trust: 1.4

vendor:lexmarkmodel:x94xscope:eqversion:*

Trust: 1.0

vendor:lexmarkmodel:z15xx net.mh.n206scope: - version: -

Trust: 0.6

vendor:lexmarkmodel:z2420 net.ar.n204scope: - version: -

Trust: 0.6

vendor:lexmarkmodel:lc.br.p049scope:eqversion:x94x

Trust: 0.3

vendor:lexmarkmodel:lp.sp.p112scope:eqversion:x86x

Trust: 0.3

vendor:lexmarkmodel:lc4.be.p457scope:eqversion:x85x

Trust: 0.3

vendor:lexmarkmodel:x782e lc2.to.p305cscope: - version: -

Trust: 0.3

vendor:lexmarkmodel:x772e lc2.tr.p275scope: - version: -

Trust: 0.3

vendor:lexmarkmodel:lr.fl.p224bscope:eqversion:x73x

Trust: 0.3

vendor:lexmarkmodel:lr.mn.p224ascope:eqversion:x65x

Trust: 0.3

vendor:lexmarkmodel:x64xef lc2.ti.p305ascope: - version: -

Trust: 0.3

vendor:lexmarkmodel:lc2.mc.p307ascope:eqversion:x646

Trust: 0.3

vendor:lexmarkmodel:lc2.mc.p307ascope:eqversion:x644

Trust: 0.3

vendor:lexmarkmodel:lc2.mb.p307bscope:eqversion:x642

Trust: 0.3

vendor:lexmarkmodel:ll.el.p424scope:eqversion:x546

Trust: 0.3

vendor:lexmarkmodel:ll.el.p424scope:eqversion:x544

Trust: 0.3

vendor:lexmarkmodel:ll.el.p424scope:eqversion:x543

Trust: 0.3

vendor:lexmarkmodel:lr.bs.p224ascope:eqversion:x46x

Trust: 0.3

vendor:lexmarkmodel:ll.bz.p424scope:eqversion:x36x

Trust: 0.3

vendor:lexmarkmodel:lm1.mt.p110hscope:eqversion:x264

Trust: 0.3

vendor:lexmarkmodel:w850 lp.jb.p108wsscope: - version: -

Trust: 0.3

vendor:lexmarkmodel:w840 ls.ha.p121scope: - version: -

Trust: 0.3

vendor:lexmarkmodel:t656 lsj.sj.p019scope: - version: -

Trust: 0.3

vendor:lexmarkmodel:t654 lr.jp.p224ascope: - version: -

Trust: 0.3

vendor:lexmarkmodel:t652 lr.jp.p224ascope: - version: -

Trust: 0.3

vendor:lexmarkmodel:t650 lr.jp.p224ascope: - version: -

Trust: 0.3

vendor:lexmarkmodel:t64x ls.st.p240scope: - version: -

Trust: 0.3

vendor:lexmarkmodel:e462 lr.lbh.p224cwsscope: - version: -

Trust: 0.3

vendor:lexmarkmodel:e460 lr.lbh.p224ascope: - version: -

Trust: 0.3

vendor:lexmarkmodel:e450 lm.sz.p113vcrefscope: - version: -

Trust: 0.3

vendor:lexmarkmodel:e360dn ll.lbm.p424scope: - version: -

Trust: 0.3

vendor:lexmarkmodel:e360d ll.lbl.p424scope: - version: -

Trust: 0.3

vendor:lexmarkmodel:e260 ll.lbl.p424scope: - version: -

Trust: 0.3

vendor:lexmarkmodel:c935dn lc.jo.p051scope: - version: -

Trust: 0.3

vendor:lexmarkmodel:c920 ls.ta.p127scope: - version: -

Trust: 0.3

vendor:lexmarkmodel:c78x lc.io.p165ascope: - version: -

Trust: 0.3

vendor:lexmarkmodel:c77x lc.cm.p027bscope: - version: -

Trust: 0.3

vendor:lexmarkmodel:c73x lr.sk.p224ascope: - version: -

Trust: 0.3

vendor:lexmarkmodel:c546 lu.as.p424scope: - version: -

Trust: 0.3

vendor:lexmarkmodel:c544 ll.as.p424scope: - version: -

Trust: 0.3

vendor:lexmarkmodel:c543 ll.as.p424scope: - version: -

Trust: 0.3

vendor:lexmarkmodel:c540 ll.as.p424scope: - version: -

Trust: 0.3

vendor:lexmarkmodel:c53x ls.sw.p026avcscope: - version: -

Trust: 0.3

vendor:lexmarkmodel:c52x ls.fa.p129scope: - version: -

Trust: 0.3

vendor:lexmarkmodel:lc.br.p051hds1scope:neversion:x94x

Trust: 0.3

vendor:lexmarkmodel:lc.br.p051hdsscope:neversion:x94x

Trust: 0.3

vendor:lexmarkmodel:lp.lp.p311hscope:neversion:x86x

Trust: 0.3

vendor:lexmarkmodel:lp.lp.p311escope:neversion:x86x

Trust: 0.3

vendor:lexmarkmodel:lc4.be.p457s1scope:neversion:x85x

Trust: 0.3

vendor:lexmarkmodel:lc4.be.p457sscope:neversion:x85x

Trust: 0.3

vendor:lexmarkmodel:x782e lc2.to.p305cs1scope:neversion: -

Trust: 0.3

vendor:lexmarkmodel:x782e lc2.to.p305csscope:neversion: -

Trust: 0.3

vendor:lexmarkmodel:x772e lc2.tr.p275s1scope:neversion: -

Trust: 0.3

vendor:lexmarkmodel:x772e lc2.tr.p275sscope:neversion: -

Trust: 0.3

vendor:lexmarkmodel:lr.fl.p311hscope:neversion:x73x

Trust: 0.3

vendor:lexmarkmodel:lr.fl.p311escope:neversion:x73x

Trust: 0.3

vendor:lexmarkmodel:lr.mn.p311hscope:neversion:x65x

Trust: 0.3

vendor:lexmarkmodel:lr.mn.p311escope:neversion:x65x

Trust: 0.3

vendor:lexmarkmodel:x64xef lc2.ti.p305as1scope:neversion: -

Trust: 0.3

vendor:lexmarkmodel:x64xef lc2.ti.p305asscope:neversion: -

Trust: 0.3

vendor:lexmarkmodel:lc2.mc.p307as1scope:neversion:x646

Trust: 0.3

vendor:lexmarkmodel:lc2.mc.p307asscope:neversion:x646

Trust: 0.3

vendor:lexmarkmodel:lc2.mc.p307as1scope:neversion:x644

Trust: 0.3

vendor:lexmarkmodel:lc2.mc.p307asscope:neversion:x644

Trust: 0.3

vendor:lexmarkmodel:lc2.mb.p307bs1scope:neversion:x642

Trust: 0.3

vendor:lexmarkmodel:lc2.mb.p307bsscope:neversion:x642

Trust: 0.3

vendor:lexmarkmodel:ll.el.p429ascope:neversion:x546

Trust: 0.3

vendor:lexmarkmodel:ll.el.p429ascope:neversion:x544

Trust: 0.3

vendor:lexmarkmodel:ll.el.p429ascope:neversion:x543

Trust: 0.3

vendor:lexmarkmodel:lr.bs.p311hscope:neversion:x46x

Trust: 0.3

vendor:lexmarkmodel:lr.bs.p311escope:neversion:x46x

Trust: 0.3

vendor:lexmarkmodel:ll.bz.p429ascope:neversion:x36x

Trust: 0.3

vendor:lexmarkmodel:lm1.mt.p214scope:neversion:x264

Trust: 0.3

vendor:lexmarkmodel:w850 lp.jb.p311hscope:neversion: -

Trust: 0.3

vendor:lexmarkmodel:w850 lp.jb.p311escope:neversion: -

Trust: 0.3

vendor:lexmarkmodel:w840 ls.ha.p236lpcsscope:neversion: -

Trust: 0.3

vendor:lexmarkmodel:w840 ls.ha.p225sscope:neversion: -

Trust: 0.3

vendor:lexmarkmodel:w840 ls.ha.p121s1scope:neversion: -

Trust: 0.3

vendor:lexmarkmodel:w840 ls.ha.p121sscope:neversion: -

Trust: 0.3

vendor:lexmarkmodel:w840 ld.ha.fm139sscope:neversion: -

Trust: 0.3

vendor:lexmarkmodel:w840 ld.ha.bc104sscope:neversion: -

Trust: 0.3

vendor:lexmarkmodel:t656 lsj.sj.p019sscope:neversion: -

Trust: 0.3

vendor:lexmarkmodel:t654 lr.jp.p311hscope:neversion: -

Trust: 0.3

vendor:lexmarkmodel:t654 lr.jp.p311escope:neversion: -

Trust: 0.3

vendor:lexmarkmodel:t652 lr.jp.p311hscope:neversion: -

Trust: 0.3

vendor:lexmarkmodel:t652 lr.jp.p311escope:neversion: -

Trust: 0.3

vendor:lexmarkmodel:t650 lr.jp.p311hscope:neversion: -

Trust: 0.3

vendor:lexmarkmodel:t650 lr.jp.p311escope:neversion: -

Trust: 0.3

vendor:lexmarkmodel:t64x ls.st.p240s1scope:neversion: -

Trust: 0.3

vendor:lexmarkmodel:t64x ls.st.p240sscope:neversion: -

Trust: 0.3

vendor:lexmarkmodel:t64x ls.st.p240lpcsscope:neversion: -

Trust: 0.3

vendor:lexmarkmodel:t64x ld.st.fm152sscope:neversion: -

Trust: 0.3

vendor:lexmarkmodel:e462 lr.lbh.p311hscope:neversion: -

Trust: 0.3

vendor:lexmarkmodel:e462 lr.lbh.p311escope:neversion: -

Trust: 0.3

vendor:lexmarkmodel:e460 lr.lbh.p311hscope:neversion: -

Trust: 0.3

vendor:lexmarkmodel:e460 lr.lbh.p311escope:neversion: -

Trust: 0.3

vendor:lexmarkmodel:e450 lm.sz.p113vcres1scope:neversion: -

Trust: 0.3

vendor:lexmarkmodel:e450 lm.sz.p113vcresscope:neversion: -

Trust: 0.3

vendor:lexmarkmodel:e360dn ll.lbm.p429ascope:neversion: -

Trust: 0.3

vendor:lexmarkmodel:e360d ll.lbl.p429ascope:neversion: -

Trust: 0.3

vendor:lexmarkmodel:e260 ll.lbl.p429ascope:neversion: -

Trust: 0.3

vendor:lexmarkmodel:c935dn lc.jo.p051s1scope:neversion: -

Trust: 0.3

vendor:lexmarkmodel:c935dn lc.jo.p051sscope:neversion: -

Trust: 0.3

vendor:lexmarkmodel:c920 ls.ta.p127sscope:neversion: -

Trust: 0.3

vendor:lexmarkmodel:c920 ls.ta.p127lpcsscope:neversion: -

Trust: 0.3

vendor:lexmarkmodel:c920 ls.ta.p127epsscope:neversion: -

Trust: 0.3

vendor:lexmarkmodel:c920 ld.ta.fm130sscope:neversion: -

Trust: 0.3

vendor:lexmarkmodel:c920 ld.ta.bc109sscope:neversion: -

Trust: 0.3

vendor:lexmarkmodel:c78x lc.io.p165as1scope:neversion: -

Trust: 0.3

vendor:lexmarkmodel:c78x lc.io.p165asscope:neversion: -

Trust: 0.3

vendor:lexmarkmodel:c77x lc.cm.p027bs1scope:neversion: -

Trust: 0.3

vendor:lexmarkmodel:c77x lc.cm.p027bsscope:neversion: -

Trust: 0.3

vendor:lexmarkmodel:c77x lc.cm.p027blpcsscope:neversion: -

Trust: 0.3

vendor:lexmarkmodel:c73x lr.sk.p311hscope:neversion: -

Trust: 0.3

vendor:lexmarkmodel:c73x lr.sk.p311escope:neversion: -

Trust: 0.3

vendor:lexmarkmodel:c546 lu.as.p429ascope:neversion: -

Trust: 0.3

vendor:lexmarkmodel:c544 ll.as.p429ascope:neversion: -

Trust: 0.3

vendor:lexmarkmodel:c543 ll.as.p429ascope:neversion: -

Trust: 0.3

vendor:lexmarkmodel:c540 ll.as.p429ascope:neversion: -

Trust: 0.3

vendor:lexmarkmodel:c53x ls.sw.p027lpcsscope:neversion: -

Trust: 0.3

vendor:lexmarkmodel:c53x ls.sw.p026avcs1scope:neversion: -

Trust: 0.3

vendor:lexmarkmodel:c53x ls.sw.p026avcsscope:neversion: -

Trust: 0.3

vendor:lexmarkmodel:c52x ls.fa.p129s1scope:neversion: -

Trust: 0.3

vendor:lexmarkmodel:c52x ls.fa.p129sscope:neversion: -

Trust: 0.3

vendor:lexmarkmodel:c52x ls.fa.p129lpcsscope:neversion: -

Trust: 0.3

vendor:lexmarkmodel:c52x ld.fa.fm131sscope:neversion: -

Trust: 0.3

sources: CNVD: CNVD-2010-0414 // BID: 38901 // JVNDB: JVNDB-2010-004501 // CNNVD: CNNVD-201003-333 // NVD: CVE-2010-0619

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2010-0619
value: HIGH

Trust: 1.0

NVD: CVE-2010-0619
value: HIGH

Trust: 0.8

CNNVD: CNNVD-201003-333
value: HIGH

Trust: 0.6

nvd@nist.gov: CVE-2010-0619
severity: HIGH
baseScore: 7.3
vectorString: AV:N/AC:H/AU:N/C:C/I:P/A:C
accessVector: NETWORK
accessComplexity: HIGH
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: PARTIAL
availabilityImpact: COMPLETE
exploitabilityScore: 4.9
impactScore: 9.5
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

sources: JVNDB: JVNDB-2010-004501 // CNNVD: CNNVD-201003-333 // NVD: CVE-2010-0619

PROBLEMTYPE DATA

problemtype:CWE-119

Trust: 1.8

sources: JVNDB: JVNDB-2010-004501 // NVD: CVE-2010-0619

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201003-333

TYPE

buffer overflow

Trust: 0.6

sources: CNNVD: CNNVD-201003-333

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2010-004501

PATCH
title:TE84url:http://support.lexmark.com/index?page=content&id=TE84&locale=EN&userlocale=EN_US
Trust: 0.8
title:Lexmark Laser Printer PJL Patch for Remote Stack Buffer Overflow Vulnerabilityurl:https://www.cnvd.org.cn/patchInfo/show/2228
Trust: 0.6
sources:
            
            
            CNVD: CNVD-2010-0414 // 
            
            
            
            JVNDB: JVNDB-2010-004501

EXTERNAL IDS
db:NVDid:CVE-2010-0619
Trust: 3.3
db:BIDid:38901
Trust: 1.9
db:JVNDBid:JVNDB-2010-004501
Trust: 0.8
db:CNVDid:CNVD-2010-0414
Trust: 0.6
db:BUGTRAQid:20100322 {PRL} LEXMARK MULTIPLE LASER PRINTER REMOTE STACK OVERFLOW
Trust: 0.6
db:NSFOCUSid:14690
Trust: 0.6
db:CNNVDid:CNNVD-201003-333
Trust: 0.6
sources:
            
            
            CNVD: CNVD-2010-0414 // 
            
            
            
            BID: 38901 // 
            
            
            
            JVNDB: JVNDB-2010-004501 // 
            
            
            
            CNNVD: CNNVD-201003-333 // 
            
            
            
            NVD: CVE-2010-0619

REFERENCES
url:http://support.lexmark.com/index?page=content&id=te84&locale=en&userlocale=en_us
Trust: 2.5
url:http://www.securityfocus.com/bid/38901
Trust: 1.6
url:http://www.securityfocus.com/archive/1/510251/100/0/threaded
Trust: 1.0
url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2010-0619
Trust: 0.8
url:http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2010-0619
Trust: 0.8
url:http://www.securityfocus.com/archive/1/archive/1/510251/100/0/threaded
Trust: 0.6
url:http://www.nsfocus.net/vulndb/14690
Trust: 0.6
url:http://www.lexmark.com/
Trust: 0.3
url:/archive/1/510251
Trust: 0.3
sources:
            
            
            CNVD: CNVD-2010-0414 // 
            
            
            
            BID: 38901 // 
            
            
            
            JVNDB: JVNDB-2010-004501 // 
            
            
            
            CNNVD: CNNVD-201003-333 // 
            
            
            
            NVD: CVE-2010-0619

CREDITS
Francis Provencher
Trust: 0.6
sources:
            
            
            CNNVD: CNNVD-201003-333

SOURCES
db:CNVDid:CNVD-2010-0414
db:BIDid:38901
db:JVNDBid:JVNDB-2010-004501
db:CNNVDid:CNNVD-201003-333
db:NVDid:CVE-2010-0619

LAST UPDATE DATE
2024-11-23T22:35:44.924000+00:00

SOURCES UPDATE DATE
db:CNVDid:CNVD-2010-0414date:2010-03-23T00:00:00
db:BIDid:38901date:2010-03-23T00:00:00
db:JVNDBid:JVNDB-2010-004501date:2012-09-25T00:00:00
db:CNNVDid:CNNVD-201003-333date:2010-03-25T00:00:00
db:NVDid:CVE-2010-0619date:2024-11-21T01:12:35.647

SOURCES RELEASE DATE
db:CNVDid:CNVD-2010-0414date:2010-03-23T00:00:00
db:BIDid:38901date:2010-03-23T00:00:00
db:JVNDBid:JVNDB-2010-004501date:2012-09-25T00:00:00
db:CNNVDid:CNNVD-201003-333date:2010-03-24T00:00:00
db:NVDid:CVE-2010-0619date:2010-03-24T22:45:15.997