VULHUB ™

A vulnerability has be discovered in Xerox DocuShare v2.2. Reportedly the default DocuShare configuration settings allow remote users to connect anonymously and access features that should otherwise be accessible by authenticated users only. Under default settings it is possible for an anonymous user to upload malicious files to the server. It should be noted that it is not yet known whether later versions of the software are vulnerable to this issue.

A vulnerability has be discovered in Xerox DocuShare v2.2. Reportedly the default DocuShare configuration settings allow remote users to connect anonymously and access features that should otherwise be accessible by authenticated users only. Under default settings it is possible for an anonymous user to upload malicious files to the server. It should be noted that it is not yet known whether later versions of the software are vulnerable to this issue.