Lucene search
MitreCVELIST:CVE-2018-17141HistorySep 21, 2018 - 5:00 p.m.
CVE-2018-17141
2018-09-2117:00:00
mitre
www.cve.org
HylaFAX 6.0.6 and HylaFAX+ 5.6.0 allow remote attackers to execute arbitrary code via a dial-in session that provides a FAX page with the JPEG bit enabled, which is mishandled in FaxModem::writeECMData() in the faxd/CopyQuality.c++ file.
References
git.hylafax.org/HylaFAX?a=commit%3Bh=c6cac8d8cd0dbe313689ba77023e12bc5b3027be
www.openwall.com/lists/oss-security/2018/09/20/1
lists.debian.org/debian-lts-announce/2018/09/msg00026.html
seclists.org/bugtraq/2018/Sep/49
www.debian.org/security/2018/dsa-4298
www.x41-dsec.de/lab/advisories/x41-2018-008-hylafax/
Related
nessus
nessus
Debian DSA-4298-1 : hylafax - security update
2018-09-21 00:00:00
Fedora 27 : hylafax+ (2018-11b966722a)
2018-09-27 00:00:00
Debian DLA-1515-1 : hylafax security update
2018-09-24 00:00:00
cve
cve
CVE-2018-17141
2018-09-21 17:29:07
openvas
openvas
Fedora Update for hylafax+ FEDORA-2018-11b966722a
2018-09-28 00:00:00
Fedora Update for hylafax+ FEDORA-2018-37a27807e0
2018-09-28 00:00:00
Debian: Security Advisory (DLA-1515-1)
2018-09-23 00:00:00
debian
debian
[SECURITY] [DLA 1515-1] hylafax security update
2018-09-22 21:14:31
[SECURITY] [DSA 4298-1] hylafax security update
2018-09-20 19:04:19
suse
suse
Security update for hylafax+ (critical)
2018-09-22 09:29:24
Security update for hylafax+ (critical)
2018-09-21 21:49:49
debiancve
debiancve
CVE-2018-17141
2018-09-21 17:29:07
prion
prion
Code injection
2018-09-21 17:29:00
zdt
zdt
freebsd
freebsd
comms/hylafax -- Malformed fax sender remote code execution in JPEG support
2018-08-24 00:00:00
osv
osv
hylafax - security update
2018-09-20 00:00:00
CVE-2018-17141
2018-09-21 17:29:07
hylafax - security update
2018-09-22 00:00:00
nvd
nvd
CVE-2018-17141
2018-09-21 17:29:07
alpinelinux
alpinelinux
CVE-2018-17141
2018-09-21 17:29:07
ubuntucve
ubuntucve
CVE-2018-17141
2018-09-21 00:00:00
mageia
mageia
Updated hylafax+ packages fix security vulnerability
2018-11-18 01:23:26