Description
Multiple eval injection vulnerabilities in HylaFAX 4.2.3 and earlier allow remote attackers to execute arbitrary commands via (1) the notify script in HylaFAX 4.2.0 to 4.2.3 and (2) crafted CallID parameters to the faxrcvd script in HylaFAX 4.2.2 and 4.2.3.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Patrice Fournier · textremotelinux
https://www.exploit-db.com/exploits/27032
References (12)
Core 12
Core References
Patch, Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/18314
Exploit, Patch vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/16151
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/18366
Patch, Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/18337
Various Sources x_refsource_confirm
http://www.hylafax.org/content/HylaFAX_4.2.4_release
Patch, Vendor Advisory vendor-advisory
x_refsource_gentoo
http://www.gentoo.org/security/en/glsa/glsa-200601-03.xml
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/18489
Third Party Advisory vendor-advisory
x_refsource_debian
http://www.debian.org/security/2005/dsa-933
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/420974/100/0/threaded
Various Sources x_refsource_misc
http://bugs.hylafax.org/bugzilla/show_bug.cgi?id=719
Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2006/0072
Vendor Advisory vendor-advisory
x_refsource_mandriva
http://www.mandriva.com/security/advisories?name=MDKSA-2006:015
Scores
EPSS
0.3100
EPSS Percentile
96.8%
Details
Status
published
Products (5)
hylafax/hylafax
4.1.1
hylafax/hylafax
4.2
hylafax/hylafax
4.2.1
hylafax/hylafax
4.2.2
hylafax/hylafax
4.2.3
Published
Dec 31, 2005
Tracked Since
Feb 18, 2026