github
diff --git a/‎.github/ISSUE_TEMPLATE/all-for-one.md‎
Lines changed: 6 additions & 0 deletions b/‎.github/ISSUE_TEMPLATE/all-for-one.md‎
Lines changed: 6 additions & 0 deletions
diff --git a/‎SecurityExploits/SANE/epsonds_CVE-2020-12861/.gitignore‎
Lines changed: 2 additions & 0 deletions b/‎SecurityExploits/SANE/epsonds_CVE-2020-12861/.gitignore‎
Lines changed: 2 additions & 0 deletions
diff --git a/‎SecurityExploits/SANE/epsonds_CVE-2020-12861/Makefile‎
Lines changed: 10 additions & 0 deletions b/‎SecurityExploits/SANE/epsonds_CVE-2020-12861/Makefile‎
Lines changed: 10 additions & 0 deletions
diff --git a/‎SecurityExploits/SANE/epsonds_CVE-2020-12861/README.md‎
Lines changed: 37 additions & 0 deletions b/‎SecurityExploits/SANE/epsonds_CVE-2020-12861/README.md‎
Lines changed: 37 additions & 0 deletions
@@ -18,3 +18,9 @@ assignees: ''
 *Describe the vulnerability. Provide any information you think will help GitHub assess the impact your query has on the open source community.*
 
 - [ ] Are you planning to discuss this vulnerability submission publicly? (Blog Post, social networks, etc). *We would love to have you spread the word about the good work you are doing*
+
+## Result(s)
+
+*Provide at least one useful result found by your query, on some revision of a real project.*
+
+- [description](url)
@@ -0,0 +1,2 @@
+fakescanner
+sane_backends_exploit
@@ -0,0 +1,10 @@
+all: fakescanner sane_backends_exploit
+
+fakescanner: fakescanner.cpp utils.hpp utils.cpp
+	g++ -Wall -Wextra -O2 fakescanner.cpp utils.cpp -o fakescanner
+
+sane_backends_exploit: sane_backends_exploit.cpp utils.hpp utils.cpp
+	g++ -Wall -Wextra -O2 sane_backends_exploit.cpp utils.cpp -o sane_backends_exploit
+
+clean:
+	rm -f fakescanner sane_backends_exploit
@@ -0,0 +1,37 @@
+# Vulnerabilities in SANE Backends
+
+This directory contains two proof-of-concept exploits for several vulnerabilities in
+[SANE Backends](https://gitlab.com/sane-project/backends).
+
+The first PoC, [fakescanner.cpp](fakescanner.cpp),
+is an enumeration of the different vulnerabilities listed in the
+[bug report](https://gitlab.com/sane-project/backends/-/issues/279).
+Run it like this:
+
+```bash
+make
+./fakescanner epson 0
+```
+
+(There are different command-line options for triggering different bugs.)
+On a different computer, start
+[Simple Scan](https://packages.ubuntu.com/bionic/simple-scan).
+
+The second PoC, [sane_backends_exploit.cpp](sane_backends_exploit.cpp),
+is a more elaborate exploit which uses a subset of the vulnerabilities
+to pop a calculator.
+It is designed to target
+[Simple Scan](https://packages.ubuntu.com/bionic/simple-scan)
+on
+[Ubuntu 18.04 LTS](https://releases.ubuntu.com/bionic/).
+It will not work on more recent Ubuntu versions due to the glibc version
+being different.
+Run it like this:
+
+```bash
+make
+./sane_backends_exploit
+```
+
+On a different computer, start
+[Simple Scan](https://packages.ubuntu.com/bionic/simple-scan).
Original file line number	Diff line number	Diff line change
`@@ -0,0 +1,2 @@`
	`1`	`+fakescanner`
	`2`	`+sane_backends_exploit`