aboutsummaryrefslogtreecommitdiffstats
path: root/security
diff options
context:
space:
mode:
authornectar <nectar@FreeBSD.org>2005-01-12 06:41:49 +0800
committernectar <nectar@FreeBSD.org>2005-01-12 06:41:49 +0800
commit55a7a7680171faecd48848b85b2be6f12c4b110e (patch)
treeebcba493f5d06732db6a759d547a1e12dbcf5cfd /security
parent07ce5b28577091119a47cb46c3eac7b65810c0d9 (diff)
downloadfreebsd-ports-gnome-55a7a7680171faecd48848b85b2be6f12c4b110e.tar.gz
freebsd-ports-gnome-55a7a7680171faecd48848b85b2be6f12c4b110e.tar.zst
freebsd-ports-gnome-55a7a7680171faecd48848b85b2be6f12c4b110e.zip
Document HylaFAX authentication bypass vulnerability.
Diffstat (limited to 'security')
-rw-r--r--security/vuxml/vuln.xml24
1 files changed, 24 insertions, 0 deletions
diff --git a/security/vuxml/vuln.xml b/security/vuxml/vuln.xml
index 5b75c3b5b95a..966733ba9b9b 100644
--- a/security/vuxml/vuln.xml
+++ b/security/vuxml/vuln.xml
@@ -32,6 +32,30 @@ EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
-->
<vuxml xmlns="http://www.vuxml.org/apps/vuxml-1">
+ <vuln vid="8eabaad9-641f-11d9-92a7-000a95bc6fae">
+ <topic>hylafax -- unauthorized login vulnerability</topic>
+ <affects>
+ <package>
+ <name>hylafax</name>
+ <range><lt>4.2.1</lt></range>
+ </package>
+ </affects>
+ <description>
+ <body xmlns="http://www.w3.org/1999/xhtml">
+ <p>A flaw in HylaFAX may allow an attacker to bypass normal
+ authentication by spoofing their DNS PTR records.</p>
+ </body>
+ </description>
+ <references>
+ <cvename>CAN-2004-1182</cvename>
+ <mlist msgid="20050111155949.GU9853@bilbo.x101.com">http://marc.theaimsgroup.com/?l=bugtraq&amp;m=110546971307585</mlist>
+ </references>
+ <dates>
+ <discovery>2005-01-11</discovery>
+ <entry>2005-01-11</entry>
+ </dates>
+ </vuln>
+
<vuln vid="56971fa6-641c-11d9-a097-000854d03344">
<topic>xshisen -- local buffer overflows</topic>
<affects>
generated by cgit (git 2.34.1) at 2025-01-12 12:05:02 +0800