Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2009-4902HistoryJun 18, 2010 - 4:30 p.m.
CVE-2009-4902
2010-06-1816:30:01
Debian Security Bug Tracker
security-tracker.debian.org
18
CVSS2
6.8
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:S/C:C/I:C/A:C
EPSS
0
Percentile
10.1%
Buffer overflow in the MSGFunctionDemarshall function in winscard_svc.c in the PC/SC Smart Card daemon (aka PCSCD) in MUSCLE PCSC-Lite 1.5.4 and earlier might allow local users to gain privileges via crafted SCARD_CONTROL message data, which is improperly demarshalled. NOTE: this vulnerability exists because of an incorrect fix for CVE-2010-0407.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | pcsc-lite | < 1.9.9-2 | pcsc-lite_1.9.9-2_all.deb |
| Debian | 11 | all | pcsc-lite | < 1.9.1-1 | pcsc-lite_1.9.1-1_all.deb |
| Debian | 999 | all | pcsc-lite | < 2.3.0-1 | pcsc-lite_2.3.0-1_all.deb |
| Debian | 13 | all | pcsc-lite | < 2.3.0-1 | pcsc-lite_2.3.0-1_all.deb |
Related
nessus
nessus
Fedora 12 : pcsc-lite-1.5.2-5.fc12 (2010-10764)
2010-07-14 00:00:00
Fedora 11 : pcsc-lite-1.5.2-3.fc11 (2010-9995)
2010-07-01 00:00:00
openSUSE Security Update : libpcsclite1 (openSUSE-SU-2010:0500-1)
2010-08-13 00:00:00
prion
prion
Buffer overflow
2010-06-18 16:30:00
Buffer overflow
2010-06-18 16:30:00
Buffer overflow
2010-06-18 16:30:00
cvelist
cvelist
cve
cve
nvd
nvd
ubuntucve
ubuntucve
openvas
openvas
RedHat Update for pcsc-lite RHSA-2010:0533-01
2010-07-16 00:00:00
Ubuntu Update for pcsc-lite vulnerability USN-969-1
2010-08-06 00:00:00
RedHat Update for pcsc-lite RHSA-2010:0533-01
2010-07-16 00:00:00
ubuntu
ubuntu
PCSC-Lite vulnerability
2010-08-05 00:00:00
debiancve
debiancve
CVE-2010-0407
2010-06-18 16:30:01
CVE-2009-4901
2010-06-18 16:30:01
securityvulns
securityvulns
pcsc-lite buffer overflow
2010-06-14 00:00:00
[SECURITY] [DSA 2059-1] New pcsc-lite packages fix privilege escalation
2010-06-14 00:00:00
veracode
veracode
Buffer Overflows
2020-04-10 00:49:44
debian
debian
[SECURITY] [DSA 2059-2] New pcsc-lite packages fix regression
2010-07-04 14:50:39
[SECURITY] [DSA 2059-1] New pcsc-lite packages fix privilege escalation
2010-06-10 18:59:47
fedora
fedora
[SECURITY] Fedora 11 Update: pcsc-lite-1.5.2-3.fc11
2010-06-16 17:41:00
[SECURITY] Fedora 12 Update: pcsc-lite-1.5.2-4.fc12
2010-06-16 17:44:56
[SECURITY] Fedora 12 Update: pcsc-lite-1.5.2-5.fc12
2010-07-13 20:40:54
osv
osv
pcsc-lite - privilege escalation
2010-06-10 00:00:00
oraclelinux
oraclelinux
pcsc-lite security update
2010-07-14 00:00:00
redhat
redhat
(RHSA-2010:0533) Moderate: pcsc-lite security update
2010-07-14 00:00:00
centos
centos
pcsc security update
2010-07-15 09:11:48
CVSS2
6.8
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:S/C:C/I:C/A:C
EPSS
0
Percentile
10.1%
Related for DEBIANCVE:CVE-2009-4902