PCSC-Lite: pcscd ATR Handler Buffer Overflow

    Type

  • PCSC-Lite: pcscd ATR Handler Buffer Overflow

    • Severity

  • Medium

    • Affected products

  • PCSC-Lite

    • Date

  • 2010-12-13

    • CVE Reference

  • N/A

MWR InfoSecurity identified a vulnerability in PCSC-Lite’s pcscd daemon. The vulnerability can be triggered using a malicious smart card. An attacker could use this vulnerability to trigger a denial of service condition or potentially execute arbitrary code in the target system. To successfully exploit this vulnerability the attacker will be required to insert a specially crafted smart card in the target system.