Sane-backend Security Vulnerabilities and Issues — Sane-backend CVE List

Lucene search

SaneSane-backend

3 matches found

CVE•added 2003/09/22 4:0 a.m.•46 views

CVE-2003-0776

saned in sane-backends 1.0.7 and earlier does not properly "check the validity of the RPC numbers it gets before getting the parameters," with unknown consequences.

7.5CVSS6.2AI score0.00743EPSS

CVE•added 2003/09/22 4:0 a.m.•39 views

CVE-2003-0773

saned in sane-backends 1.0.7 and earlier does not check the IP address of the connecting host during the SANE_NET_INIT RPC call, which allows remote attackers to use that call even if they are restricted in saned.conf.

7.5CVSS6.2AI score0.01269EPSS

CVE•added 2003/09/22 4:0 a.m.•37 views

CVE-2003-0774

saned in sane-backends 1.0.7 and earlier does not quickly handle connection drops, which allows remote attackers to cause a denial of service (segmentation fault) when invalid memory is accessed.

7.5CVSS6.2AI score0.01498EPSS