Sane : Security vulnerabilities, CVEs published in 2003

Copy

CVE-2003-0776

saned in sane-backends 1.0.7 and earlier does not properly "check the validity of the RPC numbers it gets before getting the parameters," with unknown consequences.

Max CVSS

7.5

EPSS Score

0.75%

Published

2003-09-22

Updated

2008-09-10

CVE-2003-0774

saned in sane-backends 1.0.7 and earlier does not quickly handle connection drops, which allows remote attackers to cause a denial of service (segmentation fault) when invalid memory is accessed.

Max CVSS

7.5

EPSS Score

1.98%

Published

2003-09-22

Updated

2008-09-10

CVE-2003-0773

saned in sane-backends 1.0.7 and earlier does not check the IP address of the connecting host during the SANE_NET_INIT RPC call, which allows remote attackers to use that call even if they are restricted in saned.conf.

Max CVSS

7.5

EPSS Score

1.30%

Published

2003-09-22

Updated

2013-08-23

3 vulnerabilities found

This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!