Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

Gentoo: GLSA-200610-05 High: CAPI4Hylafax Arbitrary Code Exec

gentoo
Calendar Grey October 17, 2006
Dist Gentoo Esm H88
CAPI4Hylafax in Gentoo presents a risk for malicious command execution from remote locations. It's advised to implement upgrades for better system protection.
CAPI4Hylafax allows remote attackers to execute arbitrary commands.

Summary

Gentoo Linux Security Advisory GLSA 200610-05 https://security.gentoo.org/ Severity: High Title: CAPI4Hylafax fax receiver: Execution of arbitrary code Date: October 17, 2006 Bugs: #145982 ID: 200610-05

Synopsis ======= CAPI4Hylafax allows remote attackers to execute arbitrary commands.
Background ========= CAPI4Hylafax makes it possible to send and receive faxes via CAPI and AVM Fritz!Cards.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 capi4hylafax < 01.03.00.99.300.3-r1 >= 01.03.00.99.300.3-r1
========== Lionel Elie Mamane discovered an error in c2faxrecv, which doesn't properly sanitize TSI strings when handling incoming calls.
Impact ===== A remote attacker can send null ...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory high severity security issue gentoo arbitrary code execution remote command execution capi4hylafax

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Topics%20covered

Topics Covered

security advisory high severity security issue gentoo arbitrary code execution remote command execution capi4hylafax

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround

Your message here