4 matches found
SUSE CVE-2010-4531
Stack-based buffer overflow in the ATRDecodeAtr function in the Answer-to-Reset ATR Handler atrhandler.c for pcscd in PCSC-Lite 1.5.3, and possibly other 1.5.x and 1.6.x versions, allows physically proximate attackers to cause a denial of service crash and possibly execute arbitrary code via a...
GLSA-201401-17 : PCSC-Lite: Arbitrary code execution
The remote host is affected by the vulnerability described in GLSA-201401-17 PCSC-Lite: Arbitrary code execution PCSC-Lite contains a stack-based buffer overflow in the ATRDecodeAtr function in the Answer-to-Reset Handler atrhandler.c. Impact : A physically proximate attacker could execute...
Scientific Linux Security Update : ccid on SL5.x i386/x86_64 (20130930)
An integer overflow, leading to an array index error, was found in the way the CCID driver processed a smart card's serial number. A local attacker could use this flaw to execute arbitrary code with the privileges of the user running the PC/SC Lite pcscd daemon root, by default, by inserting a...
Scientific Linux Security Update : pcsc-lite on SL6.x i386/x86_64 (20130221)
A stack-based buffer overflow flaw was found in the way pcsc-lite decoded certain attribute values of Answer-to-Reset ATR messages. A local attacker could use this flaw to execute arbitrary code with the privileges of the user running the pcscd daemon root, by default, by inserting a specially...