Back to search
CVE-2010-4523
Published: Jan 7, 2011
Modified: Aug 7, 2024
PUBLISHED
Description
Multiple stack-based buffer overflows in libopensc in OpenSC 0.11.13 and earlier allow physically proximate attackers to execute arbitrary code via a long serial-number field on a smart card, related to (1) card-acos5.c, (2) card-atrust-acos.c, and (3) card-starcos.c.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
43068
third-party-advisory
x_refsource_SECUNIA
ADV-2011-0212
vdb-entry
x_refsource_VUPEN
[oss-security] 20101222 Re: CVE request: opensc buffer overflow
mailing-list
x_refsource_MLIST
https://www.opensc-project.org/opensc/changeset/4913
x_refsource_CONFIRM
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=607427
x_refsource_CONFIRM
MDVSA-2011:011
vendor-advisory
x_refsource_MANDRIVA
FEDORA-2010-19193
vendor-advisory
x_refsource_FEDORA
https://bugzilla.redhat.com/show_bug.cgi?id=664831
x_refsource_CONFIRM
42807
third-party-advisory
x_refsource_SECUNIA
SUSE-SR:2011:002
vendor-advisory
x_refsource_SUSE
ADV-2011-0109
vdb-entry
x_refsource_VUPEN
42658
third-party-advisory
x_refsource_SECUNIA
ADV-2011-0009
vdb-entry
x_refsource_VUPEN
https://bugs.launchpad.net/ubuntu/+source/opensc/+bug/692483
x_refsource_CONFIRM
FEDORA-2010-19192
vendor-advisory
x_refsource_FEDORA
[oss-security] 20101221 CVE request: opensc buffer overflow
mailing-list
x_refsource_MLIST
45435
vdb-entry
x_refsource_BID
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now