Vulnerabilities > Muscle
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-02-23 | CVE-2016-10109 | Use After Free vulnerability in multiple products Use-after-free vulnerability in pcsc-lite before 1.8.20 allows a remote attackers to cause denial of service (crash) via a command that uses "cardsList" after the handle has been released through the SCardReleaseContext function. | 7.5 |
| 2010-06-18 | CVE-2010-0407 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Muscle Pcsc-Lite Multiple buffer overflows in the MSGFunctionDemarshall function in winscard_svc.c in the PC/SC Smart Card daemon (aka PCSCD) in MUSCLE PCSC-Lite before 1.5.4 allow local users to gain privileges via crafted message data, which is improperly demarshalled. | 6.8 |
| 2010-06-18 | CVE-2009-4902 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Muscle Pcsc-Lite Buffer overflow in the MSGFunctionDemarshall function in winscard_svc.c in the PC/SC Smart Card daemon (aka PCSCD) in MUSCLE PCSC-Lite 1.5.4 and earlier might allow local users to gain privileges via crafted SCARD_CONTROL message data, which is improperly demarshalled. | 6.8 |
| 2010-06-18 | CVE-2009-4901 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Muscle Pcsc-Lite The MSGFunctionDemarshall function in winscard_svc.c in the PC/SC Smart Card daemon (aka PCSCD) in MUSCLE PCSC-Lite before 1.5.4 might allow local users to cause a denial of service (daemon crash) via crafted SCARD_SET_ATTRIB message data, which is improperly demarshalled and triggers a buffer over-read, a related issue to CVE-2010-0407. | 2.1 |