Vulnerabilities > Gert Doering

DATE CVE VULNERABILITY TITLE RISK
2008-11-05 CVE-2008-4936 Link Following vulnerability in Gert Doering Mgetty 1.1.36
faxspool in mgetty 1.1.36 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/faxsp.##### temporary file.
6.9
2003-08-18 CVE-2003-0516 Remote Security vulnerability in mgetty
cnd.c in mgetty 1.1.28 and earlier does not properly filter non-printable characters and quotes, which may allow remote attackers to execute arbitrary commands via shell metacharacters in (1) caller ID or (2) caller name strings.
network
low complexity
gert-doering
7.5
2003-01-17 CVE-2002-1392 Unspecified vulnerability in Gert Doering Mgetty
faxspool in mgetty before 1.1.29 uses a world-writable spool directory for outgoing faxes, which allows local users to modify fax transmission privileges.
local
low complexity
gert-doering
2.1
2003-01-17 CVE-2002-1391 Buffer Overrun vulnerability in MGetty Caller ID Excessive Name Length
Buffer overflow in cnd-program for mgetty before 1.1.29 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a Caller ID string with a long CallerName argument.
network
low complexity
gert-doering
7.5
2001-03-12 CVE-2001-0141 Unspecified vulnerability in Gert Doering Mgetty 1.1.22
mgetty 1.1.22 allows local users to overwrite arbitrary files via a symlink attack in some configurations.
local
high complexity
gert-doering
1.2
2000-10-20 CVE-2000-0691 Symbolic Link Traversal vulnerability in Gert Doering Mgetty 1.1.19/1.1.20/1.1.21
The faxrunq and faxrunqd in the mgetty package allows local users to create or modify arbitrary files via a symlink attack which creates a symlink in from /var/spool/fax/outgoing/.last_run to the target file.
local
low complexity
gert-doering
2.1