Symlink Attack Vulnerability in SANE Library 1.0.3 and Earlier

Symlink Attack Vulnerability in SANE Library 1.0.3 and Earlier

CVE-2001-0890 · LOW Severity

AV:L/AC:L/AU:N/C:N/I:P/A:N

Certain backend drivers in the SANE library 1.0.3 and earlier, as used in frontend software such as XSane, allows local users to modify files via a symlink attack on temporary files.

Learn more about our User Device Pen Test.