Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 441
Alerts This Week
Warning Icon 1 441

Gentoo: GLSA-200601-03 High: HylaFAX Multiple Risks of Code Execution

gentoo
Calendar Grey January 6, 2006
Dist Gentoo Esm H88
The Gentoo implementation of HylaFAX encounters significant risks linked to potential code execution vulnerabilities and breaches in unauthorized access protocols.
HylaFAX is vulnerable to arbitrary code execution and unauthorized access vulnerabilities.

Summary

Gentoo Linux Security Advisory GLSA 200601-03 https://security.gentoo.org/ Severity: High Title: HylaFAX: Multiple vulnerabilities Date: January 06, 2006 Bugs: #116389 ID: 200601-03

Synopsis ======= HylaFAX is vulnerable to arbitrary code execution and unauthorized access vulnerabilities.
Background ========= HylaFAX is an enterprise-class system for sending and receiving facsimile messages and for sending alpha-numeric pages.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 net-misc/hylafax < 4.2.3-r1 >= 4.2.3-r1
========== Patrice Fournier discovered that HylaFAX runs the notify script on untrusted user input. Furthermore, users can log in without a password...

Read the Full Advisory

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround