CVE Vulnerabilities

CVE-2003-0777

Published: Sep 22, 2003 | Modified: Sep 10, 2008
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:N/I:N/A:P
RedHat/V2
RedHat/V3
Ubuntu

saned in sane-backends 1.0.7 and earlier, when debug messages are enabled, does not properly handle dropped connections, which can prevent strings from being null terminated and cause a denial of service (segmentation fault).

Affected Software

Name Vendor Start Version End Version
Sane Sane 1.0.0 1.0.0
Sane Sane 1.0.1 1.0.1
Sane Sane 1.0.2 1.0.2
Sane Sane 1.0.3 1.0.3
Sane Sane 1.0.4 1.0.4
Sane Sane 1.0.5 1.0.5
Sane Sane 1.0.6 1.0.6
Sane Sane 1.0.7 1.0.7
Sane Sane 1.0.7_beta1 1.0.7_beta1
Sane Sane 1.0.7_beta2 1.0.7_beta2
Sane Sane 1.0.8 1.0.8
Sane Sane 1.0.9 1.0.9
Sane-backend Sane 1.0.10 1.0.10

References