Required CVE Record Information
Description
HylaFax 4.2.1 and earlier does not create or verify ownership of the UNIX domain socket, which might allow local users to read faxes and cause a denial of service by creating the socket using the hyla.unix temporary file.
References 4 Total
- securityfocus.com: 15043 vdb-entry
- mandriva.com: MDKSA-2005:177 vendor-advisory
- secunia.com: 17107 third-party-advisory
- http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=329384
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 4 Total
- securityfocus.com: 15043 vdb-entryx_transferred
- mandriva.com: MDKSA-2005:177 vendor-advisoryx_transferred
- secunia.com: 17107 third-party-advisoryx_transferred
- http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=329384 x_transferred