[Forgot Password]
Login  Register Subscribe

23631

 
 

115038

 
 

95906

 
 

909

 
 

77982

 
 

109

Paid content will be excluded from the download.


Download | Alert*
CVE
view XML

CVE-2010-4530

Date: (C)2011-01-18   (M)2017-08-18
 
CVSS Score: 4.4Access Vector: LOCAL
Exploitability Subscore: 3.4Access Complexity: MEDIUM
Impact Subscore: 6.4Authentication: NONE
 Confidentiality: PARTIAL
 Integrity: PARTIAL
 Availability: PARTIAL











Signedness error in ccid_serial.c in libccid in the USB Chip/Smart Card Interface Devices (CCID) driver, as used in pcscd in PCSC-Lite 1.5.3 and possibly other products, allows physically proximate attackers to execute arbitrary code via a smart card with a crafted serial number that causes a negative value to be used in a memcpy operation, which triggers a buffer overflow. NOTE: some sources refer to this issue as an integer overflow.

Reference:
BID-45806
ADV-2011-0100
ADV-2011-0179
FEDORA-2011-0143
FEDORA-2011-0162
MDVSA-2011:014
RHSA-2013:1323
http://www.openwall.com/lists/oss-security/2010/12/22/7
http://www.openwall.com/lists/oss-security/2011/01/03/3
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705
http://labs.mwrinfosecurity.com/files/Advisories/mwri_pcsc-libccid-buffer-overflow_2010-12-13.pdf
https://bugzilla.redhat.com/show_bug.cgi?id=664986
pcsclite-ccid-code-execution(64961)

CWE    1
CWE-189
OVAL    7
oval:org.secpod.oval:def:101181
oval:org.secpod.oval:def:500993
oval:org.secpod.oval:def:501102
oval:org.secpod.oval:def:1500000
...

© 2013 SecPod Technologies