8 matches found
GLSA-200509-21 : Hylafax: Insecure temporary file creation in xferfaxstats script
The remote host is affected by the vulnerability described in GLSA-200509-21 Hylafax: Insecure temporary file creation in xferfaxstats script Javier Fernandez-Sanguino has discovered that xferfaxstats cron script supplied by Hylafax insecurely creates temporary files with predictable filenames...
Hylafax: Insecure temporary file creation in xferfaxstats script
Background Hylafax is a client-server fax package for class 1 and 2 fax modems. Description Javier Fernandez-Sanguino has discovered that xferfaxstats cron script supplied by Hylafax insecurely creates temporary files with predictable filenames. Impact A local attacker could create symbolic links...
CVE-2005-3069
xferfaxstats in HylaFax 4.2.1 and earlier allows local users to overwrite arbitrary files via a symlink attack on the xferfax$$ temporary file...
CVE-2005-3069
xferfaxstats in HylaFax 4.2.1 and earlier allows local users to overwrite arbitrary files via a symlink attack on the xferfax$$ temporary file...
CVE-2005-3069
xferfaxstats in HylaFax 4.2.1 and earlier allows local users to overwrite arbitrary files via a symlink attack on the xferfax$$ temporary file...
CVE-2005-3069
CVE-2005-3069 affects HylaFAX (xferfaxstats) up to version 4.2.1 and earlier. Root cause: insecure creation of temporary files by xferfaxstats leading to a symlink attack on xferfax$$, allowing local users to overwrite arbitrary files (I:P, A:N). Impact: local privilege/impact on integrity of fil...
HylaFax symbolic links problem
Symbolic links problem on temporary file creation in xferfaxstats script...
HylaFAX < 4.2.2 RC1 xferfaxstats Symlink Arbitrary File Overwrite
Binary data 3236.prm...