| タイトル | OpenSC OpenSC 0.26.1 and earlier Stack-based Buffer Overflow |
|---|
| 説明 | Vulnerability Basic Information
● Vulnerability Name: OpenSC pkcs15-init Configuration File Parsing Stack-Based Buffer Overflow
● Vulnerability Type: Stack-Based Buffer Overflow (CWE-121)
● Affected Component: OpenSC (especially the pkcs15-init tool)
● Affected Versions: OpenSC 0.26.1 and earlier
● Severity: High
● Attack Vector: Local
● Prerequisites: The attacker needs to obtain local execution privileges on the target system and be able to write files into a writable directory (e.g., /tmp). |
|---|
| ソース | ⚠️ https://github.com/OpenSC/OpenSC/issues/3681 |
|---|
| ユーザー | Fantasy (UID 69897) |
|---|
| 送信 | 2026年05月11日 10:06 (24 日 ago) |
|---|
| モデレーション | 2026年05月31日 18:00 (20 days later) |
|---|
| ステータス | 重複 |
|---|
| VulDBエントリ | 367231 [OpenSC 迄 0.26.x Profile src/pkcs15init/profile.c do_key_value key メモリ破損] |
|---|
| ポイント | 0 |
|---|