NotCVE - vendor:"Hylafax" product:"Hylafax" version:"4.1

6 results (0.004 seconds)

CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0

CVE-2005-3070

https://notcve.org/view.php?id=CVE-2005-3070

27 Sep 2005 — HylaFax 4.2.1 and earlier does not create or verify ownership of the UNIX domain socket, which might allow local users to read faxes and cause a denial of service by creating the socket using the hyla.unix temporary file. • http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=329384 •

CVSS: 9.8EPSS: 0%CPEs: 11EXPL: 0

CVE-2004-1182

https://notcve.org/view.php?id=CVE-2004-1182

31 Dec 2004 — hfaxd in HylaFAX before 4.2.1, when installed with a "weak" hosts.hfaxd file, allows remote attackers to authenticate and bypass intended access restrictions via a crafted (1) username or (2) hostname that satisfies a regular expression that is matched against a hosts.hfaxd entry without a password. • http://marc.info/?l=bugtraq&m=110546971307585&w=2 •

CVSS: 10.0EPSS: 7%CPEs: 7EXPL: 1

CVE-2003-0886 – Hylafax 4.1.x - HFaxD Format String

https://notcve.org/view.php?id=CVE-2003-0886

12 Nov 2003 — Format string vulnerability in hfaxd for Hylafax 4.1.7 and earlier allows remote attackers to execute arbitrary code. Vulnerabilidad de cadena de formato en Hylafax 4.1.7 y anteriores permite a atacantes remotos ejecutar código arbitrario. • https://www.exploit-db.com/exploits/23371 •

CVSS: 7.5EPSS: 1%CPEs: 10EXPL: 0

CVE-2002-1049

https://notcve.org/view.php?id=CVE-2002-1049

04 Oct 2002 — Format string vulnerability in HylaFAX faxgetty before 4.1.3 allows remote attackers to cause a denial of service (crash) via the TSI data element. • http://archives.neohapsis.com/archives/bugtraq/2002-07/0358.html •

CVSS: 9.8EPSS: 3%CPEs: 10EXPL: 0

CVE-2002-1050

https://notcve.org/view.php?id=CVE-2002-1050

04 Oct 2002 — Buffer overflow in HylaFAX faxgetty before 4.1.3 allows remote attackers to cause a denial of service, and possibly execute arbitrary code, via a long line of image data. • http://archives.neohapsis.com/archives/bugtraq/2002-07/0358.html •

CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0

CVE-2001-0387

https://notcve.org/view.php?id=CVE-2001-0387

02 Jul 2001 — Format string vulnerability in hfaxd in HylaFAX before 4.1.b2_2 allows local users to gain privileges via the -q command line argument. • http://archives.neohapsis.com/archives/bugtraq/2001-04/0236.html •