SUSE CVE-2009-4901

The MSGFunctionDemarshall function in winscardsvc.c in the PC/SC Smart Card daemon aka PCSCD in MUSCLE PCSC-Lite before 1.5.4 might allow local users to cause a denial of service daemon crash via crafted SCARDSETATTRIB message data, which is improperly demarshalled and triggers a buffer over-read...

Denial Of Service (DoS)

PC/SC Lite is vulnerable to Denial Of Service DoS.It is possible due to the way the pcscd daemon coordinates communications with smart card readers and smart cards connected to the system, handled client requests. A local user could create a specially-crafted request that would cause the pcscd...

Buffer Overflows

PC/SC Lite is vulnerable to buffer overflow in the way the pcscd daemon. It is due to a resource manager that coordinates communications with smart card readers and smart cards connected to the system, handled client requests. A local user could create a specially-crafted request that would cause...

Arbitrary Code Execution

ccid is vulnerable to arbitrary code execution attacks. The vulnerability exists as a signedness error in ccidserial.c in libccid in the USB Chip/Smart Card Interface Devices CCID driver, as used in pcscd in PCSC-Lite 1.5.3 and possibly other products, allows physically proximate attackers to...

Ubuntu: Security Advisory (USN-3176-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian Security Advisory DSA 3752-1 (pcsc-lite - security update)

Peter Wu discovered that a use-after-free in the pscd PC/SC daemon of PCSC-Lite might result in denial of service or potentially privilege escalation. OpenVAS Vulnerability Test $Id: deb3752.nasl 6607 2017-07-07 12:04:25Z cfischer $ Auto-generated from advisory DSA 3752-1 using nvtgen 1.0 Script...

CentOS 5 : ccid (CESA-2013:1323)

An updated ccid package that fixes one security issue and one bug is now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having low security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating,...

Scientific Linux Security Update : ccid on SL5.x i386/x86_64 (20130930)

An integer overflow, leading to an array index error, was found in the way the CCID driver processed a smart card's serial number. A local attacker could use this flaw to execute arbitrary code with the privileges of the user running the PC/SC Lite pcscd daemon root, by default, by inserting a...

RedHat Update for ccid RHSA-2013:1323-01

Check for the Version of ccid OpenVAS Vulnerability Test RedHat Update for ccid RHSA-2013:1323-01 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms o...

Oracle Linux 6 : pcsc-lite (ELSA-2013-0525)

The remote Oracle Linux 6 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2013-0525 advisory. - CVE-2010-4531 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note that Nessus has not tested for this...

CentOS Update for pcsc-lite CESA-2013:0525 centos6

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Scientific Linux Security Update : ccid on SL6.x i386/x86_64 (20130221)

An integer overflow, leading to an array index error, was found in the way the CCID driver processed a smart card's serial number. A local attacker could use this flaw to execute arbitrary code with the privileges of the user running the PC/SC Lite pcscd daemon root, by default, by inserting a...

Scientific Linux Security Update : pcsc-lite on SL6.x i386/x86_64 (20130221)

A stack-based buffer overflow flaw was found in the way pcsc-lite decoded certain attribute values of Answer-to-Reset ATR messages. A local attacker could use this flaw to execute arbitrary code with the privileges of the user running the pcscd daemon root, by default, by inserting a specially...

ccid security update

CentOS Errata and Security Advisory CESA-2013:0523 An updated ccid package that fixes one security issue and one bug are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having low security impact. A Common Vulnerability Scoring System CVSS...

RedHat Update for ccid RHSA-2013:0523-02

Check for the Version of ccid OpenVAS Vulnerability Test RedHat Update for ccid RHSA-2013:0523-02 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms o...

RedHat Update for ccid RHSA-2013:0523-02

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

RHEL 6 : ccid (RHSA-2013:0523)

The remote Redhat Enterprise Linux 6 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2013:0523 advisory. Chip/Smart Card Interface Devices CCID is a USB smart card reader standard followed by most modern smart card readers. The ccid package provides a...

Low: Red Hat Security Advisory: ccid security and bug fix update

An updated ccid package that fixes one security issue and one bug are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having low security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating...

Scientific Linux Security Update : pcsc-lite on SL5.x i386/x86_64

Multiple buffer overflow flaws were discovered in the way the pcscd daemon, a resource manager that coordinates communications with smart card readers and smart cards connected to the system, handled client requests. A local user could create a specially crafted request that would cause the pcscd...

CentOS Update for pcsc-lite CESA-2010:0533 centos5 i386

Check for the Version of pcsc-lite OpenVAS Vulnerability Test CentOS Update for pcsc-lite CESA-2010:0533 centos5 i386 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify ...