Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
HylaFAX+ through 7.0.2 and HylaFAX Enterprise have scripts that execute binaries from directories writable by unprivileged users (e.g., locations under /var/spool/hylafax that are writable by the uucp account). This allows these users to execute code in the context of the user calling these binaries (often root).
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
iFAX Solutions HylaFAX+和HylaFAX Enterprise 安全漏洞
Vulnerability Description
iFAX Solutions HylaFAX+是美国iFAX Solutions公司的一套开源的企业级发送和接收传真系统。该系统为局域网中的用户提供传真功能。HylaFAX Enterprise是商业版本。 iFAX Solutions HylaFAX+ 7.0.2及之前版本和HylaFAX Enterprise中存在安全漏洞。攻击者可利用该漏洞在调用二进制文件的用户上下文中执行代码。
CVSS Information
N/A
Vulnerability Type
N/A