Total
2 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2006-1231 | 1 Julian Pawlowski | 1 Capi4hylafax | 2024-02-04 | 1.2 LOW | N/A |
CAPI4HylaFAX 1.3, when compiled with GENERATE_DEBUGSFFDATAFILE set, allows local users to modify arbitrary files via a symlink attack on the c2faxrecv_dbgdatafile.sff temporary file. | |||||
CVE-2006-3126 | 1 Julian Pawlowski | 1 Capi4hylafax | 2024-02-04 | 7.5 HIGH | N/A |
c2faxrecv in capi4hylafax 01.02.03 allows remote attackers to execute arbitrary commands via null (\0) and shell metacharacters in the TSI string, as demonstrated by a fax from an anonymous number. |