Lucene search
SuseSUSE-SA:2001:15HistoryApr 20, 2001 - 10:26 a.m.
local root compromise in hylafax
2001-04-2010:26:00
lists.opensuse.org
4
0.001 Low
EPSS
Percentile
23.3%
The HylaFax program hfaxd(8c) implements the server part of the HylaFax package. It is started either by inetd(8) or runs in standalone mode. hfaxd(8c) offers three different protocols to process fax jobs. When hfaxd(8c) tries to change to it’s queue directory and fails, it prints an error message via syslog by directly passing user supplied data as format string. As long as hfaxd(8c) is installed setuid root, this behavior could be exploited to gain root access locally.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| openSUSE | 7.0 | alpha | hylafax | < 4.1beta2-211 | hylafax-4.1beta2-211.alpha.rpm |
| openSUSE | 6.3 | i386 | hylafax | < 4.1beta2-252 | hylafax-4.1beta2-252.i386.rpm |
| openSUSE | 7.0 | i386 | hylafax | < 4.1beta2-254 | hylafax-4.1beta2-254.i386.rpm |
| openSUSE | 6.4 | alpha | hylafax | < 4.1beta2-211 | hylafax-4.1beta2-211.alpha.rpm |
| openSUSE | 7.1 | ppc | hylafax | < 4.1beta2-164 | hylafax-4.1beta2-164.ppc.rpm |
| openSUSE | 7.1 | i386 | hylafax | < 4.1beta2-251 | hylafax-4.1beta2-251.i386.rpm |
| openSUSE | 6.3 | alpha | hylafax | < 4.1beta2-211 | hylafax-4.1beta2-211.alpha.rpm |
| openSUSE | 6.4 | i386 | hylafax | < 4.1beta2-253 | hylafax-4.1beta2-253.i386.rpm |
| openSUSE | 7.0 | ppc | hylafax | < 4.1beta2-165 | hylafax-4.1beta2-165.ppc.rpm |
| openSUSE | 6.4 | ppc | hylafax | < 4.1beta2-165 | hylafax-4.1beta2-165.ppc.rpm |
Related
nessus
nessus
Mandrake Linux Security Advisory : hylafax (MDKSA-2001:041)
2012-09-06 00:00:00
cve
cve
CVE-2001-0387
2001-07-02 04:00:00
cvelist
cvelist
CVE-2001-0387
2001-09-18 04:00:00