{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[],"affected_systems_content":"<p>Xerox FreeFlow Print Server.</p>","content":"## Description\n\nXerox FreeFlow Print Server utilise Solaris et Java, pour lesquels des\nvuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es.\n\nCertaines de ces vuln\u00e9rabilit\u00e9s permettent \u00e0 un utilisateur malveillant\nd'ex\u00e9cuter du code arbitraire \u00e0 distance.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des\ncorrectifs (cf. section Documentation).\n","cves":[{"name":"CVE-2011-0627","url":"https://www.cve.org/CVERecord?id=CVE-2011-0627"},{"name":"CVE-2011-2287","url":"https://www.cve.org/CVERecord?id=CVE-2011-2287"},{"name":"CVE-2011-0628","url":"https://www.cve.org/CVERecord?id=CVE-2011-0628"},{"name":"CVE-2011-2290","url":"https://www.cve.org/CVERecord?id=CVE-2011-2290"},{"name":"CVE-2011-2245","url":"https://www.cve.org/CVERecord?id=CVE-2011-2245"},{"name":"CVE-2011-2295","url":"https://www.cve.org/CVERecord?id=CVE-2011-2295"},{"name":"CVE-2011-0618","url":"https://www.cve.org/CVERecord?id=CVE-2011-0618"},{"name":"CVE-2011-0620","url":"https://www.cve.org/CVERecord?id=CVE-2011-0620"},{"name":"CVE-2011-0621","url":"https://www.cve.org/CVERecord?id=CVE-2011-0621"},{"name":"CVE-2011-2298","url":"https://www.cve.org/CVERecord?id=CVE-2011-2298"},{"name":"CVE-2011-0622","url":"https://www.cve.org/CVERecord?id=CVE-2011-0622"},{"name":"CVE-2011-0579","url":"https://www.cve.org/CVERecord?id=CVE-2011-0579"},{"name":"CVE-2011-2259","url":"https://www.cve.org/CVERecord?id=CVE-2011-2259"},{"name":"CVE-2011-1910","url":"https://www.cve.org/CVERecord?id=CVE-2011-1910"},{"name":"CVE-2011-0626","url":"https://www.cve.org/CVERecord?id=CVE-2011-0626"},{"name":"CVE-2011-0623","url":"https://www.cve.org/CVERecord?id=CVE-2011-0623"},{"name":"CVE-2011-2285","url":"https://www.cve.org/CVERecord?id=CVE-2011-2285"},{"name":"CVE-2011-2291","url":"https://www.cve.org/CVERecord?id=CVE-2011-2291"},{"name":"CVE-2011-0619","url":"https://www.cve.org/CVERecord?id=CVE-2011-0619"},{"name":"CVE-2011-2294","url":"https://www.cve.org/CVERecord?id=CVE-2011-2294"},{"name":"CVE-2011-2249","url":"https://www.cve.org/CVERecord?id=CVE-2011-2249"},{"name":"CVE-2011-2258","url":"https://www.cve.org/CVERecord?id=CVE-2011-2258"},{"name":"CVE-2011-2289","url":"https://www.cve.org/CVERecord?id=CVE-2011-2289"},{"name":"CVE-2011-0625","url":"https://www.cve.org/CVERecord?id=CVE-2011-0625"},{"name":"CVE-2011-0624","url":"https://www.cve.org/CVERecord?id=CVE-2011-0624"}],"links":[{"title":"Document du CERTA CERTA-2011-AVI-400 du 20 juillet 2011 :","url":"http://www.certa.ssi.gouv.fr/site/CERTA-2011-AVI-400/index.html"}],"reference":"CERTA-2011-AVI-476","revisions":[{"description":"version initiale.","revision_date":"2011-08-29T00:00:00.000000"}],"risks":[{"description":"D\u00e9ni de service \u00e0 distance"},{"description":"Ex\u00e9cution de code arbitraire \u00e0 distance"},{"description":"Atteinte \u00e0 l'int\u00e9grit\u00e9 des donn\u00e9es"},{"description":"Ex\u00e9cution de code arbitraire"},{"description":"D\u00e9ni de service"},{"description":"Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"}],"summary":"De nombreuses vuln\u00e9rabilit\u00e9s de Xerox FreeFlow Print Server ont \u00e9t\u00e9\ncorrig\u00e9es. Certaines permettent \u00e0 un utilisateur malveillant d'ex\u00e9cuter\ndu code arbitraire \u00e0 distance.\n","title":"Vuln\u00e9rabilit\u00e9s dans Xerox FreeFlow Print Server","vendor_advisories":[{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Xerox XRX11-003 du 19 ao\u00fbt 2011","url":"http://www.xerox.com/dowload/security/security-bulletin/127e996-10b83-4ab94539ab540/cert_XRX-003_v1.0.pdf"}]}