Vulnerabilities > Gert Doering > Mgetty
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2008-11-05 | CVE-2008-4936 | Link Following vulnerability in Gert Doering Mgetty 1.1.36 faxspool in mgetty 1.1.36 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/faxsp.##### temporary file. | 6.9 |
| 2003-08-18 | CVE-2003-0516 | Remote Security vulnerability in mgetty cnd.c in mgetty 1.1.28 and earlier does not properly filter non-printable characters and quotes, which may allow remote attackers to execute arbitrary commands via shell metacharacters in (1) caller ID or (2) caller name strings. | 7.5 |
| 2003-01-17 | CVE-2002-1392 | Unspecified vulnerability in Gert Doering Mgetty faxspool in mgetty before 1.1.29 uses a world-writable spool directory for outgoing faxes, which allows local users to modify fax transmission privileges. | 2.1 |
| 2003-01-17 | CVE-2002-1391 | Buffer Overrun vulnerability in MGetty Caller ID Excessive Name Length Buffer overflow in cnd-program for mgetty before 1.1.29 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a Caller ID string with a long CallerName argument. | 7.5 |
| 2001-03-12 | CVE-2001-0141 | Unspecified vulnerability in Gert Doering Mgetty 1.1.22 mgetty 1.1.22 allows local users to overwrite arbitrary files via a symlink attack in some configurations. | 1.2 |
| 2000-10-20 | CVE-2000-0691 | Symbolic Link Traversal vulnerability in Gert Doering Mgetty 1.1.19/1.1.20/1.1.21 The faxrunq and faxrunqd in the mgetty package allows local users to create or modify arbitrary files via a symlink attack which creates a symlink in from /var/spool/fax/outgoing/.last_run to the target file. | 2.1 |