PCSC-Lite vulnerability

2010-08-0500:00:00

ubuntu.com

6.3 Medium

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:S/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

9.4%

JSON

Releases

Ubuntu 10.04
Ubuntu 9.10
Ubuntu 9.04

Packages

pcsc-lite - Middleware to access a smart card using PC/SC

Details

It was discovered that the PC/SC service did not correctly handle
malformed messages. A local attacker could exploit this to execute
arbitrary code with root privileges.

OSVersionArchitecturePackageVersionFilename
Ubuntu9.10noarchpcscd< 1.5.3-1ubuntu1.1UNKNOWN
Ubuntu9.10noarchlibpcsclite-dev< 1.5.3-1ubuntu1.1UNKNOWN
Ubuntu9.10noarchlibpcsclite1< 1.5.3-1ubuntu1.1UNKNOWN
Ubuntu9.04noarchpcscd< 1.4.102-1ubuntu2.1UNKNOWN
Ubuntu9.04noarchlibpcsclite-dev< 1.4.102-1ubuntu2.1UNKNOWN
Ubuntu9.04noarchlibpcsclite1< 1.4.102-1ubuntu2.1UNKNOWN
Ubuntu10.04noarchpcscd< 1.5.3-1ubuntu4.1UNKNOWN
Ubuntu10.04noarchlibpcsclite-dev< 1.5.3-1ubuntu4.1UNKNOWN
Ubuntu10.04noarchlibpcsclite1< 1.5.3-1ubuntu4.1UNKNOWN

OS	Version	Architecture	Package	Version	Filename
Ubuntu	9.10	noarch	pcscd	< 1.5.3-1ubuntu1.1	UNKNOWN
Ubuntu	9.10	noarch	libpcsclite-dev	< 1.5.3-1ubuntu1.1	UNKNOWN
Ubuntu	9.10	noarch	libpcsclite1	< 1.5.3-1ubuntu1.1	UNKNOWN
Ubuntu	9.04	noarch	pcscd	< 1.4.102-1ubuntu2.1	UNKNOWN
Ubuntu	9.04	noarch	libpcsclite-dev	< 1.4.102-1ubuntu2.1	UNKNOWN
Ubuntu	9.04	noarch	libpcsclite1	< 1.4.102-1ubuntu2.1	UNKNOWN
Ubuntu	10.04	noarch	pcscd	< 1.5.3-1ubuntu4.1	UNKNOWN
Ubuntu	10.04	noarch	libpcsclite-dev	< 1.5.3-1ubuntu4.1	UNKNOWN
Ubuntu	10.04	noarch	libpcsclite1	< 1.5.3-1ubuntu4.1	UNKNOWN