42 matches found
EUVD-2001-1341
Malware in sbrugna...
SUSE CVE-2017-6318
saned in sane-backends 1.0.25 allows remote attackers to obtain sensitive memory information via a crafted SANENETCONTROLOPTION packet...
Mageia: Security Advisory (MGASA-2017-0208)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for sane-backends (EulerOS-SA-2021-1119)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2017-6318
saned in sane-backends 1.0.25 allows remote attackers to obtain sensitive memory information via a crafted SANENETCONTROLOPTION packet...
DEBIAN-CVE-2017-6318
saned in sane-backends 1.0.25 allows remote attackers to obtain sensitive memory information via a crafted SANENETCONTROLOPTION packet...
UBUNTU-CVE-2017-6318
saned in sane-backends 1.0.25 allows remote attackers to obtain sensitive memory information via a crafted SANENETCONTROLOPTION packet...
CVE-2017-6318
The CVE-2017-6318 entry affects sane-backends, specifically saned in version 1.0.25, where a remote attacker can obtain memory contents by sending a crafted SANE_NET_CONTROL_OPTION packet. This vulnerability is tied to sane-backends’ network control option handling and is described as enabling me...
CVE-2017-6318
saned in sane-backends 1.0.25 allows remote attackers to obtain sensitive memory information via a crafted SANENETCONTROLOPTION packet...
CVE-2017-6318
saned in sane-backends 1.0.25 allows remote attackers to obtain sensitive memory information via a crafted SANENETCONTROLOPTION packet...
CVE-2017-6318
An information disclosure flaw was found in the way saned handled SANENETCONTROLOPTION requests. A remote attacker, able to connect to the saned daemon, could use this flaw to disclose portions of saned process memory...
Debian DSA-379-1 : sane-backends - several vulnerabilities
Alexander Hvostov, Julien Blache and Aurelien Jarno discovered several security-related problems in the sane-backends package, which contains an API library for scanners including a scanning daemon in the package libsane that can be remotely exploited. These problems allow a remote attacker to...
Mandrake Linux Security Advisory : sane (MDKSA-2003:099)
Several vulnerabilities were discovered in the saned daemon, a part of the sane package, which allows for a scanner to be used remotely. The IP address of the remote host is only checked after the first communication occurs, which causes the saned.conf restrictions to be ignored for the first...
RHEL 2.1 : sane-backends (RHSA-2003:285)
Updated SANE packages that resolve a number of vulnerabilities with the saned daemon are now available. SANE is a package for using document scanners. Sane includes a daemon program called saned that enables a single machine connected to a scanner to be used remotely. This program contains severa...
Moderate: Red Hat Security Advisory: : Updated SANE packages fix remote vulnerabilities
Updated SANE packages that resolve a number of vulnerabilities with the saned daemon are now available. SANE is a package for using document scanners. Sane includes a daemon program called saned that enables a single machine connected to a scanner to be used remotely. This program contains severa...
CVE-2003-0777
saned in sane-backends 1.0.7 and earlier, when debug messages are enabled, does not properly handle dropped connections, which can prevent strings from being null terminated and cause a denial of service segmentation fault...
DEBIAN-CVE-2003-0778
saned in sane-backends 1.0.7 and earlier, and possibly later versions, does not properly allocate memory in certain cases, which could allow attackers to cause a denial of service memory consumption...
CVE-2003-0777
saned in sane-backends 1.0.7 and earlier, when debug messages are enabled, does not properly handle dropped connections, which can prevent strings from being null terminated and cause a denial of service segmentation fault...
CVE-2003-0778
saned in sane-backends 1.0.7 and earlier, and possibly later versions, does not properly allocate memory in certain cases, which could allow attackers to cause a denial of service memory consumption...
DEBIAN-CVE-2003-0776
saned in sane-backends 1.0.7 and earlier does not properly "check the validity of the RPC numbers it gets before getting the parameters," with unknown consequences...