HylaFAX Remote Access Control Bypass Vulnerability
BID:12227
Info
HylaFAX Remote Access Control Bypass Vulnerability
| Bugtraq ID: | 12227 |
| Class: | Design Error |
| CVE: |
CVE-2004-1182 |
| Remote: | Yes |
| Local: | No |
| Published: | Jan 11 2005 12:00AM |
| Updated: | Jul 12 2009 09:27AM |
| Credit: | Discovery of this vulnerability is credited to Lee Howard <[email protected]>. |
| Vulnerable: |
SuSE Linux 8.1 SuSE Linux 8.0 i386 SuSE Linux 8.0 S.u.S.E. Linux Personal 9.2 S.u.S.E. Linux Personal 9.1 S.u.S.E. Linux Personal 9.0 x86_64 S.u.S.E. Linux Personal 9.0 S.u.S.E. Linux Personal 8.2 Mandriva Linux Mandrake 10.1 x86_64 Mandriva Linux Mandrake 10.1 Mandriva Linux Mandrake 10.0 AMD64 Mandriva Linux Mandrake 10.0 Hylafax Hylafax 4.2 Hylafax Hylafax 4.1.8 Hylafax Hylafax 4.1.7 Hylafax Hylafax 4.1.6 Hylafax Hylafax 4.1.5 Hylafax Hylafax 4.1.3 Hylafax Hylafax 4.1.2 Hylafax Hylafax 4.1.1 Hylafax Hylafax 4.1 -beta3 Hylafax Hylafax 4.1 -beta2 Hylafax Hylafax 4.1 -beta1 Hylafax Hylafax 4.1 Hylafax Hylafax 4.0.2 Hylafax Hylafax 4.0 pl2 Hylafax Hylafax 4.0 pl1 Hylafax Hylafax 4.0 pl0 |
| Not Vulnerable: |
Hylafax Hylafax 4.2.1 |
Discussion
HylaFAX Remote Access Control Bypass Vulnerability
The HylaFAX daemon is reported prone to a vulnerability that could allow unauthorized access to the HylaFAX service. It is reported that the issue presents itself due to the methods used to match a given username and hostname to an entry in the 'hosts.hfaxd' configuration file.
A remote attacker may exploit this vulnerability to gain unauthorized access to the affected service.
The HylaFAX daemon is reported prone to a vulnerability that could allow unauthorized access to the HylaFAX service. It is reported that the issue presents itself due to the methods used to match a given username and hostname to an entry in the 'hosts.hfaxd' configuration file.
A remote attacker may exploit this vulnerability to gain unauthorized access to the affected service.
Exploit / POC
HylaFAX Remote Access Control Bypass Vulnerability
No exploit is required.
No exploit is required.
Solution / Fix
HylaFAX Remote Access Control Bypass Vulnerability
Solution:
The vendor has released an update to address this issue:
A patch to fix HylaFAX hfaxd is also available at:
http://bugs.hylafax.org/bugzilla/show_bug.cgi?id=610
Mandrake has released an advisory (MDKSA-2005:006) and updates to address this vulnerability. Please see the referenced advisory for further information regarding obtaining and applying appropriate updates.
Gentoo has released an advisory (GLSA 200501-21) and an updated eBuild to address this vulnerability. Gentoo users may update their computers by issuing the following sequence of commands as a superuser:
emerge --sync
emerge --ask --oneshot --verbose ">=net-misc/hylafax-4.2.0-r2"
Debian has released an advisory (DSA 634-1) and updates to address this vulnerability. Please see the referenced advisory for further information regarding obtaining and applying appropriate updates.
SuSE Linux has released a security summary report (SUSE-SR:2005:003) that contains fixes to address this and other vulnerabilities. Customers are advised to peruse the referenced advisory for further information regarding obtaining and applying appropriate updates.
Hylafax Hylafax 4.0 pl1
Hylafax Hylafax 4.0 pl2
Hylafax Hylafax 4.0 pl0
Hylafax Hylafax 4.0.2
Hylafax Hylafax 4.1
Hylafax Hylafax 4.1 -beta1
Hylafax Hylafax 4.1 -beta3
Hylafax Hylafax 4.1 -beta2
Hylafax Hylafax 4.1.1
Hylafax Hylafax 4.1.2
Hylafax Hylafax 4.1.3
Hylafax Hylafax 4.1.5
Hylafax Hylafax 4.1.6
Hylafax Hylafax 4.1.7
Hylafax Hylafax 4.1.8
Hylafax Hylafax 4.2
Solution:
The vendor has released an update to address this issue:
A patch to fix HylaFAX hfaxd is also available at:
http://bugs.hylafax.org/bugzilla/show_bug.cgi?id=610
Mandrake has released an advisory (MDKSA-2005:006) and updates to address this vulnerability. Please see the referenced advisory for further information regarding obtaining and applying appropriate updates.
Gentoo has released an advisory (GLSA 200501-21) and an updated eBuild to address this vulnerability. Gentoo users may update their computers by issuing the following sequence of commands as a superuser:
emerge --sync
emerge --ask --oneshot --verbose ">=net-misc/hylafax-4.2.0-r2"
Debian has released an advisory (DSA 634-1) and updates to address this vulnerability. Please see the referenced advisory for further information regarding obtaining and applying appropriate updates.
SuSE Linux has released a security summary report (SUSE-SR:2005:003) that contains fixes to address this and other vulnerabilities. Customers are advised to peruse the referenced advisory for further information regarding obtaining and applying appropriate updates.
Hylafax Hylafax 4.0 pl1
-
HylaFAX hylafax-4.2.1.tar.gz
ftp://ftp.hylafax.org/source/hylafax-4.2.1.tar.gz
Hylafax Hylafax 4.0 pl2
-
HylaFAX hylafax-4.2.1.tar.gz
ftp://ftp.hylafax.org/source/hylafax-4.2.1.tar.gz
Hylafax Hylafax 4.0 pl0
-
HylaFAX hylafax-4.2.1.tar.gz
ftp://ftp.hylafax.org/source/hylafax-4.2.1.tar.gz
Hylafax Hylafax 4.0.2
-
HylaFAX hylafax-4.2.1.tar.gz
ftp://ftp.hylafax.org/source/hylafax-4.2.1.tar.gz
Hylafax Hylafax 4.1
-
HylaFAX hylafax-4.2.1.tar.gz
ftp://ftp.hylafax.org/source/hylafax-4.2.1.tar.gz
Hylafax Hylafax 4.1 -beta1
-
HylaFAX hylafax-4.2.1.tar.gz
ftp://ftp.hylafax.org/source/hylafax-4.2.1.tar.gz
Hylafax Hylafax 4.1 -beta3
-
HylaFAX hylafax-4.2.1.tar.gz
ftp://ftp.hylafax.org/source/hylafax-4.2.1.tar.gz
Hylafax Hylafax 4.1 -beta2
-
HylaFAX hylafax-4.2.1.tar.gz
ftp://ftp.hylafax.org/source/hylafax-4.2.1.tar.gz
Hylafax Hylafax 4.1.1
-
Debian hylafax-client_4.1.1-3.1_alpha.deb
Debian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/h/hylafax/hylafax-client_ 4.1.1-3.1_alpha.deb -
Debian hylafax-client_4.1.1-3.1_arm.deb
Debian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/h/hylafax/hylafax-client_ 4.1.1-3.1_arm.deb -
Debian hylafax-client_4.1.1-3.1_hppa.deb
Debian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/h/hylafax/hylafax-client_ 4.1.1-3.1_hppa.deb -
Debian hylafax-client_4.1.1-3.1_i386.deb
Debian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/h/hylafax/hylafax-client_ 4.1.1-3.1_i386.deb -
Debian hylafax-client_4.1.1-3.1_ia64.deb
Debian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/h/hylafax/hylafax-client_ 4.1.1-3.1_ia64.deb -
Debian hylafax-client_4.1.1-3.1_m68k.deb
Debian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/h/hylafax/hylafax-client_ 4.1.1-3.1_m68k.deb -
Debian hylafax-client_4.1.1-3.1_powerpc.deb
Debian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/h/hylafax/hylafax-client_ 4.1.1-3.1_powerpc.deb -
Debian hylafax-client_4.1.1-3.1_s390.deb
Debian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/h/hylafax/hylafax-client_ 4.1.1-3.1_s390.deb -
Debian hylafax-client_4.1.1-3.1_sparc.deb
Debian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/h/hylafax/hylafax-client_ 4.1.1-3.1_sparc.deb -
Debian hylafax-doc_4.1.1-3.1_all.deb
Debian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/h/hylafax/hylafax-doc_4.1 .1-3.1_all.deb -
Debian hylafax-server_4.1.1-3.1_alpha.deb
Debian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/h/hylafax/hylafax-server_ 4.1.1-3.1_alpha.deb -
Debian hylafax-server_4.1.1-3.1_arm.deb
Debian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/h/hylafax/hylafax-server_ 4.1.1-3.1_arm.deb -
Debian hylafax-server_4.1.1-3.1_hppa.deb
Debian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/h/hylafax/hylafax-server_ 4.1.1-3.1_hppa.deb -
Debian hylafax-server_4.1.1-3.1_i386.deb
Debian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/h/hylafax/hylafax-server_ 4.1.1-3.1_i386.deb -
Debian hylafax-server_4.1.1-3.1_ia64.deb
Debian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/h/hylafax/hylafax-server_ 4.1.1-3.1_ia64.deb -
Debian hylafax-server_4.1.1-3.1_m68k.deb
Debian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/h/hylafax/hylafax-server_ 4.1.1-3.1_m68k.deb -
Debian hylafax-server_4.1.1-3.1_powerpc.deb
Debian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/h/hylafax/hylafax-server_ 4.1.1-3.1_powerpc.deb -
Debian hylafax-server_4.1.1-3.1_s390.deb
Debian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/h/hylafax/hylafax-server_ 4.1.1-3.1_s390.deb -
Debian hylafax-server_4.1.1-3.1_sparc.deb
Debian GNU/Linux 3.0 alias woody
http://security.debian.org/pool/updates/main/h/hylafax/hylafax-server_ 4.1.1-3.1_sparc.deb -
HylaFAX hylafax-4.2.1.tar.gz
ftp://ftp.hylafax.org/source/hylafax-4.2.1.tar.gz
Hylafax Hylafax 4.1.2
-
HylaFAX hylafax-4.2.1.tar.gz
ftp://ftp.hylafax.org/source/hylafax-4.2.1.tar.gz
Hylafax Hylafax 4.1.3
-
HylaFAX hylafax-4.2.1.tar.gz
ftp://ftp.hylafax.org/source/hylafax-4.2.1.tar.gz -
SuSE hylafax-4.1.3-170.i586.rpm
ftp://ftp.suse.com/pub/suse/i386/update/8.1/rpm/i586/hylafax-4.1.3-170 .i586.rpm
Hylafax Hylafax 4.1.5
-
HylaFAX hylafax-4.2.1.tar.gz
ftp://ftp.hylafax.org/source/hylafax-4.2.1.tar.gz -
SuSE hylafax-4.1.5-209.i586.rpm
ftp://ftp.suse.com/pub/suse/i386/update/8.2/rpm/i586/hylafax-4.1.5-209 .i586.rpm
Hylafax Hylafax 4.1.6
-
HylaFAX hylafax-4.2.1.tar.gz
ftp://ftp.hylafax.org/source/hylafax-4.2.1.tar.gz
Hylafax Hylafax 4.1.7
-
HylaFAX hylafax-4.2.1.tar.gz
ftp://ftp.hylafax.org/source/hylafax-4.2.1.tar.gz -
SuSE hylafax-4.1.7-160.i586.rpm
ftp://ftp.suse.com/pub/suse/i386/update/9.0/rpm/i586/hylafax-4.1.7-160 .i586.rpm -
SuSE hylafax-4.1.7-160.x86_64.rpm
ftp://ftp.suse.com/pub/suse/x86_64/update/9.0/rpm/x86_64/hylafax-4.1.7 -160.x86_64.rpm
Hylafax Hylafax 4.1.8
-
HylaFAX hylafax-4.2.1.tar.gz
ftp://ftp.hylafax.org/source/hylafax-4.2.1.tar.gz -
Mandrake hylafax-4.1.8-2.1.100mdk.amd64.rpm
Mandrake Linux 10.0/AMD64
http://www.mandrakesecure.net/en/ftp.php -
Mandrake hylafax-4.1.8-2.1.100mdk.i586.rpm
Mandrake Linux 10.0
http://www.mandrakesecure.net/en/ftp.php -
Mandrake hylafax-client-4.1.8-2.1.100mdk.amd64.rpm
Mandrake Linux 10.0/AMD64
http://www.mandrakesecure.net/en/ftp.php -
Mandrake hylafax-client-4.1.8-2.1.100mdk.i586.rpm
Mandrake Linux 10.0
http://www.mandrakesecure.net/en/ftp.php -
Mandrake hylafax-server-4.1.8-2.1.100mdk.amd64.rpm
Mandrake Linux 10.0/AMD64
http://www.mandrakesecure.net/en/ftp.php -
Mandrake hylafax-server-4.1.8-2.1.100mdk.i586.rpm
Mandrake Linux 10.0
http://www.mandrakesecure.net/en/ftp.php -
Mandrake lib64hylafax4.1.1-4.1.8-2.1.100mdk.amd64.rpm
Mandrake Linux 10.0/AMD64
http://www.mandrakesecure.net/en/ftp.php -
Mandrake lib64hylafax4.1.1-devel-4.1.8-2.1.100mdk.amd64.rpm
Mandrake Linux 10.0/AMD64
http://www.mandrakesecure.net/en/ftp.php -
Mandrake libhylafax4.1.1-4.1.8-2.1.100mdk.i586.rpm
Mandrake Linux 10.0
http://www.mandrakesecure.net/en/ftp.php -
Mandrake libhylafax4.1.1-devel-4.1.8-2.1.100mdk.i586.rpm
Mandrake Linux 10.0
http://www.mandrakesecure.net/en/ftp.php -
SuSE hylafax-4.1.8-24.4.i586.rpm
ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/hylafax-4.1.8-24. 4.i586.rpm -
SuSE hylafax-4.1.8-24.4.x86_64.rpm
ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/x86_64/hylafax-4.1.8 -24.4.x86_64.rpm
Hylafax Hylafax 4.2
-
HylaFAX hylafax-4.2.1.tar.gz
ftp://ftp.hylafax.org/source/hylafax-4.2.1.tar.gz -
Mandrake hylafax-4.2.0-1.1.101mdk.i586.rpm
Mandrake Linux 10.1
http://www.mandrakesecure.net/en/ftp.php -
Mandrake hylafax-4.2.0-1.1.101mdk.x86_64.rpm
Mandrake Linux 10.1/x86_64
http://www.mandrakesecure.net/en/ftp.php -
Mandrake hylafax-client-4.2.0-1.1.101mdk.i586.rpm
Mandrake Linux 10.1
http://www.mandrakesecure.net/en/ftp.php -
Mandrake hylafax-client-4.2.0-1.1.101mdk.x86_64.rpm
Mandrake Linux 10.1/x86_64
http://www.mandrakesecure.net/en/ftp.php -
Mandrake hylafax-server-4.2.0-1.1.101mdk.i586.rpm
Mandrake Linux 10.1
http://www.mandrakesecure.net/en/ftp.php -
Mandrake hylafax-server-4.2.0-1.1.101mdk.x86_64.rpm
Mandrake Linux 10.1/x86_64
http://www.mandrakesecure.net/en/ftp.php -
Mandrake lib64hylafax4.2.0-4.2.0-1.1.101mdk.x86_64.rpm
Mandrake Linux 10.1/x86_64
http://www.mandrakesecure.net/en/ftp.php -
Mandrake lib64hylafax4.2.0-devel-4.2.0-1.1.101mdk.x86_64.rpm
Mandrake Linux 10.1/x86_64
http://www.mandrakesecure.net/en/ftp.php -
Mandrake libhylafax4.2.0-4.2.0-1.1.101mdk.i586.rpm
Mandrake Linux 10.1
http://www.mandrakesecure.net/en/ftp.php -
Mandrake libhylafax4.2.0-devel-4.2.0-1.1.101mdk.i586.rpm
Mandrake Linux 10.1
http://www.mandrakesecure.net/en/ftp.php -
SuSE hylafax-4.2.0-5.2.i586.rpm
ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/hylafax-4.2.0-5.2 .i586.rpm -
SuSE hylafax-4.2.0-5.2.x86_64.rpm
ftp://ftp.suse.com/pub/suse/x86_64/update/9.2/rpm/x86_64/hylafax-4.2.0 -5.2.x86_64.rpm
References
HylaFAX Remote Access Control Bypass Vulnerability
References:
References:
- HylaFAX hfaxd unauthorized login vulnerability (Lee Howard
)