CVE Vulnerabilities

CVE-2001-0890

Published: Dec 11, 2001 | Modified: Sep 10, 2008
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
2.1 LOW
AV:L/AC:L/Au:N/C:N/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu

Certain backend drivers in the SANE library 1.0.3 and earlier, as used in frontend software such as XSane, allows local users to modify files via a symlink attack on temporary files.

Affected Software

Name Vendor Start Version End Version
Sane Sane 1.0.0 1.0.0
Sane Sane 1.0.1 1.0.1
Sane Sane 1.0.2 1.0.2
Sane Sane 1.0.3 1.0.3
Sane Sane 1.0.4 1.0.4
Sane Sane 1.0.5 1.0.5
Sane Sane 1.0.6 1.0.6

References