EUVD-2006-2707

Malware in sbrugna...

EUVD-2006-2713

Malware in sbrugna...

CVE-2006-2714

Secure Elements Class 5 AVR client aka C5 EVM before 2.8.1 does not validate the CEID of an incoming message, which allows remote attackers to send messages to a protected asset without knowing the proper CEID...

Buffer overflow

Secure Elements Class 5 AVR client aka C5 EVM before 2.8.1 allows remote attackers to read portions of process memory via a modified size for 1 EMGETCEPARAMETER and 2 EMSETCEPARAMETER messages, which leads to a buffer overflow probably an over-read...

CVE-2006-2714

The CVE-2006-2714 issue is in Secure Elements Class 5 AVR client (aka C5 EVM) before version 2.8.1. The product does not validate the CEID of incoming messages, which can allow a remote attacker to send messages to a protected asset without knowing the proper CEID. Affected software: C5 EVM clien...

CVE-2006-2713

CVE-2006-2713 affects Secure Elements Class 5 AVR client (aka C5 EVM) prior to version 2.8.1. The vulnerability stems from generating predictable CEIDs, allowing a remote attacker to determine the CEID of a protected asset. This information could be leveraged in subsequent attacks against AVR. Th...

CVE-2006-2714

Secure Elements Class 5 AVR client aka C5 EVM before 2.8.1 does not validate the CEID of an incoming message, which allows remote attackers to send messages to a protected asset without knowing the proper CEID...