First published: Thu Sep 13 2018(Updated: )
An issue was discovered in mgetty before 1.2.1. In fax_notify_mail() in faxrec.c, the mail_to parameter is not sanitized. It could allow for command injection if untrusted input can reach it, because popen is used.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Mgetty Project Mgetty | <1.2.1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.