CVE-2006-3126

c2faxrecv in capi4hylafax 01.02.03 allows remote attackers to execute arbitrary commands via null (\0) and shell metacharacters in the TSI string, as demonstrated by a fax from an anonymous number.
Configurations

Configuration 1 (hide)

cpe:2.3:a:julian_pawlowski:capi4hylafax:01.02.03:*:*:*:*:*:*:*

History

21 Nov 2024, 00:12

Type Values Removed Values Added
References () http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=382474 - Patch () http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=382474 - Patch
References () http://secunia.com/advisories/21722 - Patch, Vendor Advisory () http://secunia.com/advisories/21722 - Patch, Vendor Advisory
References () http://secunia.com/advisories/21726 - Patch, Vendor Advisory () http://secunia.com/advisories/21726 - Patch, Vendor Advisory
References () http://secunia.com/advisories/22450 - () http://secunia.com/advisories/22450 -
References () http://security.gentoo.org/glsa/glsa-200610-05.xml - () http://security.gentoo.org/glsa/glsa-200610-05.xml -
References () http://www.debian.org/security/2006/dsa-1165 - () http://www.debian.org/security/2006/dsa-1165 -
References () http://www.novell.com/linux/security/advisories/2007_4_sr.html - () http://www.novell.com/linux/security/advisories/2007_4_sr.html -
References () http://www.securityfocus.com/bid/19801 - () http://www.securityfocus.com/bid/19801 -
References () http://www.vupen.com/english/advisories/2006/3430 - () http://www.vupen.com/english/advisories/2006/3430 -

Information

Published : 2006-09-06 00:04

Updated : 2025-04-03 01:03


NVD link : CVE-2006-3126

Mitre link : CVE-2006-3126

CVE.ORG link : CVE-2006-3126


JSON object : View

Products Affected

julian_pawlowski

  • capi4hylafax