A persistent cross site scripting vulnerability exists in the web server of the WorkCentre M123/M128, WorkCentre 133, WorkCentre Pro 123/128 and WorkCentre Pro 133. If exploited, this vulnerability could allow code injection by malicious web users into the web pages viewed by other users.
Download Software Update: Refer to the XRX08-005 Security Bulletin to determine which file to download.
cert_P35_WC123_128_133-PS-G1_EXEC1.zip
cert_P35_WC123_128_133-PS-G3_EXEC.zip
cert_P35_WC123_128_133-STD-G2_EXEC.zip
cert_P35_WC123_128_133-STD-G3_EXEC.zip
cert_P35_WC123_128_133-PS-G2_EXEC.zip