CVE Vulnerabilities

CVE-2003-0777

Published: Sep 22, 2003 | Modified: Sep 10, 2008
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:N/I:N/A:P
RedHat/V2
RedHat/V3
Ubuntu

saned in sane-backends 1.0.7 and earlier, when debug messages are enabled, does not properly handle dropped connections, which can prevent strings from being null terminated and cause a denial of service (segmentation fault).

Affected Software

Name Vendor Start Version End Version
Sane Sane 1.0.0 (including) 1.0.0 (including)
Sane Sane 1.0.1 (including) 1.0.1 (including)
Sane Sane 1.0.2 (including) 1.0.2 (including)
Sane Sane 1.0.3 (including) 1.0.3 (including)
Sane Sane 1.0.4 (including) 1.0.4 (including)
Sane Sane 1.0.5 (including) 1.0.5 (including)
Sane Sane 1.0.6 (including) 1.0.6 (including)
Sane Sane 1.0.7 (including) 1.0.7 (including)
Sane Sane 1.0.7_beta1 (including) 1.0.7_beta1 (including)
Sane Sane 1.0.7_beta2 (including) 1.0.7_beta2 (including)
Sane Sane 1.0.8 (including) 1.0.8 (including)
Sane Sane 1.0.9 (including) 1.0.9 (including)
Sane-backend Sane 1.0.10 (including) 1.0.10 (including)
Red Hat Enterprise Linux AS (Advanced Server) version 2.1 RedHat *
Red Hat Enterprise Linux ES version 2.1 RedHat *
Red Hat Enterprise Linux WS version 2.1 RedHat *
Red Hat Linux 7.1 RedHat *
Red Hat Linux 7.2 RedHat *
Red Hat Linux 7.3 RedHat *
Red Hat Linux 8.0 RedHat *
Red Hat Linux Advanced Workstation 2.1 RedHat *

References