5 matches found
Scientific Linux Security Update : pcsc-lite on SL6.x i386/x86_64 (20130221)
A stack-based buffer overflow flaw was found in the way pcsc-lite decoded certain attribute values of Answer-to-Reset ATR messages. A local attacker could use this flaw to execute arbitrary code with the privileges of the user running the pcscd daemon root, by default, by inserting a specially...
qemu: ccid: buffer overflow in handling of VSC_ATR message
Buffer overflow in the ccidcardvscardhandlemessage function in hw/ccid-card-passthru.c in QEMU before 0.15.2 and 1.x before 1.0-rc4 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted VSCATR message...
CVE-2010-4531
Stack-based buffer overflow in the ATRDecodeAtr function in the Answer-to-Reset ATR Handler atrhandler.c for pcscd in PCSC-Lite 1.5.3, and possibly other 1.5.x and 1.6.x versions, allows physically proximate attackers to cause a denial of service crash and possibly execute arbitrary code via a...
CVE-2010-4531
Stack-based buffer overflow in the ATRDecodeAtr function in the Answer-to-Reset ATR Handler atrhandler.c for pcscd in PCSC-Lite 1.5.3, and possibly other 1.5.x and 1.6.x versions, allows physically proximate attackers to cause a denial of service crash and possibly execute arbitrary code via a...
Fedora 14 : pcsc-lite-1.6.4-3.fc14 (2011-0164)
This update fixes the following security issue : A stack-based buffer overflow flaw was found in the way PC/SC Lite smart card framework decoded certain attribute values of the Answer-to-Reset ATR message, received back from the card after connecting. A local attacker could use this flaw to execu...