HylaFax 4.2.1 and earlier does not create or verify ownership of the UNIX domain socket, which might allow local users to read faxes and cause a denial of service by creating the socket using the hyla.unix temporary file.
Max CVSS
3.6
EPSS Score
0.04%
Published
2005-09-27
Updated
2008-09-05
Buffer overflow in HylaFAX faxgetty before 4.1.3 allows remote attackers to cause a denial of service, and possibly execute arbitrary code, via a long line of image data.
Max CVSS
7.5
EPSS Score
7.21%
Published
2002-10-04
Updated
2008-09-05
Format string vulnerability in HylaFAX faxgetty before 4.1.3 allows remote attackers to cause a denial of service (crash) via the TSI data element.
Max CVSS
5.0
EPSS Score
3.16%
Published
2002-10-04
Updated
2008-09-05
3 vulnerabilities found