Описание
Endless recursion when handling responses from an IAS-ECC card in iasecc_select_file in libopensc/card-iasecc.c in OpenSC before 0.19.0-rc1 could be used by attackers able to supply crafted smartcards to hang or crash the opensc library using programs.
Ссылки
- PatchThird Party Advisory
- PatchRelease NotesThird Party Advisory
- ExploitThird Party Advisory
- PatchThird Party Advisory
- PatchRelease NotesThird Party Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
EPSS
4.3 Medium
CVSS3
2.1 Low
CVSS2
Дефекты
Связанные уязвимости
Endless recursion when handling responses from an IAS-ECC card in iasecc_select_file in libopensc/card-iasecc.c in OpenSC before 0.19.0-rc1 could be used by attackers able to supply crafted smartcards to hang or crash the opensc library using programs.
Endless recursion when handling responses from an IAS-ECC card in iasecc_select_file in libopensc/card-iasecc.c in OpenSC before 0.19.0-rc1 could be used by attackers able to supply crafted smartcards to hang or crash the opensc library using programs.
Endless recursion when handling responses from an IAS-ECC card in iase ...
Endless recursion when handling responses from an IAS-ECC card in iasecc_select_file in libopensc/card-iasecc.c in OpenSC before 0.19.0-rc1 could be used by attackers able to supply crafted smartcards to hang or crash the opensc library using programs.
EPSS
4.3 Medium
CVSS3
2.1 Low
CVSS2