CVE-2004-1182: CVE-2004-1182

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2004-1182

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

hfaxd in HylaFAX before 4.2.1, when installed with a "weak" hosts.hfaxd file, allows remote attackers to authenticate and bypass intended access restrictions via a crafted (1) username or (2) hostname that satisfies a regular expression that is matched against a hosts.hfaxd entry without a password.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

HylaFAX hfaxd未授权登录漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

HylaFAX是一款企业级开放源代码收发传真软件。 HylaFAX在处理用户验证时存在问题，远程攻击者可以利用这个漏洞未授权登录，任意收发传真。 HylaFAX hfaxd使用hosts.hfaxd数据库验证用户，hosts.hfaxd第一个字段为"^username@hostname$"，其中"username"是hfaxd协议交换时提供的，"hostname"是主机名和点IP地址，表达式用于匹配用户名，主机名地址。问题存在于匹配客户端字段提供的"username@hostname"字符串时，如果匹配

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2004-1182

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2004-1182

Please Login to view more intelligence information

http://secunia.com/advisories/13812third-party-advisoryx_refsource_SECUNIA
http://www.debian.org/security/2004/dsa-634vendor-advisoryx_refsource_DEBIAN
http://security.gentoo.org/glsa/glsa-200501-21.xmlvendor-advisoryx_refsource_GENTOO
http://www.mandriva.com/security/advisories?name=MDKSA-2005:006vendor-advisoryx_refsource_MANDRAKE
http://marc.info/?l=bugtraq&m=110546971307585&w=2mailing-listx_refsource_BUGTRAQ
http://marc.info/?l=hylafax&m=110545119911558&w=2mailing-listx_refsource_MLIST
https://nvd.nist.gov/vuln/detail/CVE-2004-1182

New Vulnerabilities

Product: n/a

Vendor: n/a

V. Comments for CVE-2004-1182

No comments yet

Support Us — Your donation helps us keep running

I. Basic Information for CVE-2004-1182

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2004-1182

III. Intelligence Information for CVE-2004-1182

New Vulnerabilities

V. Comments for CVE-2004-1182

Leave a comment