CVE-2005-3539

Multiple eval injection vulnerabilities in HylaFAX 4.2.3 and earlier allow remote attackers to execute arbitrary commands via (1) the notify script in HylaFAX 4.2.0 to 4.2.3 and (2) crafted CallID parameters to the faxrcvd script in HylaFAX 4.2.2 and 4.2.3.

CVSS v2.0 7.5 HIGH

7.5^/10

CVSS v2.0 : HIGH

Vector : AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability : 10.0 / Impact : 6.4

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://bugs.hylafax.org/bugzilla/show_bug.cgi?id=719
http://secunia.com/advisories/18314	Patch Vendor Advisory
http://secunia.com/advisories/18337	Patch Vendor Advisory
http://secunia.com/advisories/18366
http://secunia.com/advisories/18489
http://www.debian.org/security/2005/dsa-933
http://www.gentoo.org/security/en/glsa/glsa-200601-03.xml	Patch Vendor Advisory
http://www.hylafax.org/content/HylaFAX_4.2.4_release
http://www.mandriva.com/security/advisories?name=MDKSA-2006:015
http://www.securityfocus.com/archive/1/420974/100/0/threaded
http://www.securityfocus.com/bid/16151	Exploit Patch
http://www.vupen.com/english/advisories/2006/0072

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:hylafax:hylafax:4.1.1:::::::*
	cpe:2.3:a:hylafax:hylafax:4.2:::::::*
	cpe:2.3:a:hylafax:hylafax:4.2.1:::::::*
	cpe:2.3:a:hylafax:hylafax:4.2.2:::::::*
	cpe:2.3:a:hylafax:hylafax:4.2.3:::::::*

History

No history.

Information

Published : 2005-12-31 05:00

Updated : 2018-10-19 15:36

NVD link : CVE-2005-3539

Mitre link : CVE-2005-3539

CVE.ORG link : CVE-2005-3539

JSON object : View

Products Affected

hylafax

hylafax

CWE

NVD-CWE-Other

{"id": "CVE-2005-3539", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.5, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": true, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2005-12-31T05:00:00.000", "references": [{"url": "http://bugs.hylafax.org/bugzilla/show_bug.cgi?id=719", "source": "security@debian.org"}, {"url": "http://secunia.com/advisories/18314", "tags": ["Patch", "Vendor Advisory"], "source": "security@debian.org"}, {"url": "http://secunia.com/advisories/18337", "tags": ["Patch", "Vendor Advisory"], "source": "security@debian.org"}, {"url": "http://secunia.com/advisories/18366", "source": "security@debian.org"}, {"url": "http://secunia.com/advisories/18489", "source": "security@debian.org"}, {"url": "http://www.debian.org/security/2005/dsa-933", "source": "security@debian.org"}, {"url": "http://www.gentoo.org/security/en/glsa/glsa-200601-03.xml", "tags": ["Patch", "Vendor Advisory"], "source": "security@debian.org"}, {"url": "http://www.hylafax.org/content/HylaFAX_4.2.4_release", "source": "security@debian.org"}, {"url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:015", "source": "security@debian.org"}, {"url": "http://www.securityfocus.com/archive/1/420974/100/0/threaded", "source": "security@debian.org"}, {"url": "http://www.securityfocus.com/bid/16151", "tags": ["Exploit", "Patch"], "source": "security@debian.org"}, {"url": "http://www.vupen.com/english/advisories/2006/0072", "source": "security@debian.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "Multiple eval injection vulnerabilities in HylaFAX 4.2.3 and earlier allow remote attackers to execute arbitrary commands via (1) the notify script in HylaFAX 4.2.0 to 4.2.3 and (2) crafted CallID parameters to the faxrcvd script in HylaFAX 4.2.2 and 4.2.3."}], "lastModified": "2018-10-19T15:36:55.190", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:hylafax:hylafax:4.1.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E1932A13-7BC2-4E15-B1E6-54B62F36B5FF"}, {"criteria": "cpe:2.3:a:hylafax:hylafax:4.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B1986347-8C08-4F35-BA61-6155DC68263E"}, {"criteria": "cpe:2.3:a:hylafax:hylafax:4.2.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FFCC3306-1850-4CDE-B97C-377CD3FE3D0C"}, {"criteria": "cpe:2.3:a:hylafax:hylafax:4.2.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "07C0F177-AD00-4D46-B80F-ACE1C5A75595"}, {"criteria": "cpe:2.3:a:hylafax:hylafax:4.2.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0FA4C7C6-EF84-436F-94F8-8600372CBE92"}], "operator": "OR"}]}], "sourceIdentifier": "security@debian.org"}