PT-2001-1605 · Hylafax · Hylafax

Published

2001-07-02

·

Updated

2017-10-10

·

CVE-2001-0387

CVSS v2.0

7.2

High

VectorAV:L/AC:L/Au:N/C:C/I:C/A:C
Name of the Vulnerable Software and Affected Versions HylaFAX versions prior to 4.1.b2 2
Description The issue is related to a format string vulnerability in the hfaxd component of HylaFAX. This vulnerability can be exploited by local users to gain privileges, specifically via the -q command line argument.
Recommendations For versions prior to 4.1.b2 2, update to version 4.1.b2 2 or later to resolve the issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Related Identifiers

CVE-2001-0387

Affected Products

Hylafax