CVE-2005-3069

Name of the Vulnerable Software and Affected Versions HylaFax versions 4.2.1 and earlier

Description The issue allows local users to overwrite arbitrary files via a symlink attack on the xferfax$$ temporary file. This is related to the xferfaxstats component in HylaFax.

Recommendations For HylaFax versions 4.2.1 and earlier, consider restricting access to the xferfaxstats component until a patch is available. As a temporary workaround, avoid using the xferfaxstats command to prevent potential exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.