CVE

Id
7601  
CVE No.
CVE-2003-0777  
Status
Candidate  
Description
saned in sane-backends 1.0.7 and earlier, when debug messages are enabled, does not properly handle dropped connections, which can prevent strings from being null terminated and cause a denial of service (segmentation fault).  
Phase
Assigned (20030910)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
44663 7601 CVE-2003-0777 DEBIAN:DSA-379  View
44664 7601 CVE-2003-0777 URL:http://www.debian.org/security/2003/dsa-379  View
44665 7601 CVE-2003-0777 REDHAT:RHSA-2003:278  View
44666 7601 CVE-2003-0777 URL:http://www.redhat.com/support/errata/RHSA-2003-278.html  View
44667 7601 CVE-2003-0777 REDHAT:RHSA-2003:285  View
44668 7601 CVE-2003-0777 URL:http://www.redhat.com/support/errata/RHSA-2003-285.html  View
44669 7601 CVE-2003-0777 MANDRAKE:MDKSA-2003:099  View
44670 7601 CVE-2003-0777 URL:http://www.mandriva.com/security/advisories?name=MDKSA-2003:099  View
44671 7601 CVE-2003-0777 SUSE:SuSE-SA:2003:046  View
44672 7601 CVE-2003-0777 URL:http://www.novell.com/linux/security/advisories/2003_046_sane.html  View
44673 7601 CVE-2003-0777 SCO:CSSA-2004-005.0  View
44674 7601 CVE-2003-0777 URL:ftp://ftp.sco.com/pub/updates/OpenLinux/3.1.1/Server/CSSA-2004-005.0/CSSA-2004-005.0.txt  View
44675 7601 CVE-2003-0777 BID:8597  View
44676 7601 CVE-2003-0777 URL:http://www.securityfocus.com/bid/8597  View
44677 7601 CVE-2003-0777 BID:8593  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
63573 JVNDB-2003-000299 saned の不適切なメモリの割り当てによりシステムメモリを大量に消費する脆弱性 sane-backend の saned のエラーチェックには不備が存在するために、saned が使用するメモリの上限が適切に設定されておらず、通信が切断されなくても任意のメモリ領域を確保することが可能である脆弱性が存在します。 CVE-2003-0778 7601 5 http://jvndb.jvn.jp/ja/contents/2003/JVNDB-2003-000299.html  View