CVE-2010-0407

EPSS 0.03%

pcsc-lite - privilege escalation

Published: 6/18/2010Modified: 4/28/2026

Also known as:DEBIAN-CVE-2010-0407

Description

Multiple buffer overflows in the MSGFunctionDemarshall function in winscard_svc.c in the PC/SC Smart Card daemon (aka PCSCD) in MUSCLE PCSC-Lite before 1.5.4 allow local users to gain privileges via crafted message data, which is improperly demarshalled.

Affected packages (2)

Debian/pcsc-litefrom 0, < 1.5.4-1
Debian/pcsc-litefrom 0, < 1.4.102-1+lenny1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2010-0407