CVE-2003-0773

saned in sane-backends 1.0.7 and earlier does not check the IP address of the connecting host during the SANE_NET_INIT RPC call, which allows remote attackers to use that call even if they are restricted in saned.conf.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:sane:sane:1.0.0:*:*:*:*:*:*:*
cpe:2.3:a:sane:sane:1.0.1:*:*:*:*:*:*:*
cpe:2.3:a:sane:sane:1.0.2:*:*:*:*:*:*:*
cpe:2.3:a:sane:sane:1.0.3:*:*:*:*:*:*:*
cpe:2.3:a:sane:sane:1.0.4:*:*:*:*:*:*:*
cpe:2.3:a:sane:sane:1.0.5:*:*:*:*:*:*:*
cpe:2.3:a:sane:sane:1.0.6:*:*:*:*:*:*:*
cpe:2.3:a:sane:sane:1.0.7:*:*:*:*:*:*:*
cpe:2.3:a:sane:sane:1.0.7_beta1:*:*:*:*:*:*:*
cpe:2.3:a:sane:sane:1.0.7_beta2:*:*:*:*:*:*:*
cpe:2.3:a:sane:sane:1.0.8:*:*:*:*:*:*:*
cpe:2.3:a:sane:sane:1.0.9:*:*:*:*:*:*:*
cpe:2.3:a:sane:sane-backend:1.0.10:*:*:*:*:*:*:*

History

No history.

Information

Published : 2003-09-22 04:00

Updated : 2024-02-04 16:31


NVD link : CVE-2003-0773

Mitre link : CVE-2003-0773

CVE.ORG link : CVE-2003-0773


JSON object : View

Products Affected

sane

  • sane-backend
  • sane