Summary
The remote host is missing an update to pcsc-lite
announced via advisory DSA 2059-1.
Solution
https://secure1.securityspace.com/smysecure/catid.html?in=DSA%202059-1
Insight
It was discovered that PCSCD, a daemon to access smart cards, was vulnerable to a buffer overflow allowing a local attacker to elevate his privileges to root.
For the stable distribution (lenny), this problem has been fixed in version 1.4.102-1+lenny1.
For the unstable distribution (sid), this problem has been fixed in version 1.5.4-1.
We recommend that you upgrade your pcsc-lite package.
Severity
Classification
-
CVE CVE-2010-0407 -
CVSS Base Score: 6.8
AV:L/AC:L/Au:S/C:C/I:C/A:C
Related Vulnerabilities