CVSS: 6.3EPSS: 0%CPEs: 2EXPL: 0CVE-2013-1866 – OpenSC.tokend Privacy Leak / File Creation
https://notcve.org/view.php?id=CVE-2013-1866
21 Mar 2013 — OpenSC OpenSC.tokend has an Arbitrary File Creation/Overwrite Vulnerability OpenSC OpenSC.tokend, presenta una vulnerabilidad de Creación de Archivos Arbitraria y Sobreescritura. OpenSC.tokend OS X module suffers from privacy leak and arbitrary file creation vulnerabilities. • http://www.securityfocus.com/bid/58620 • CWE-59: Improper Link Resolution Before File Access ('Link Following') •
CVSS: 7.2EPSS: 0%CPEs: 38EXPL: 5CVE-2010-4523 – Gentoo Linux Security Advisory 201401-18
https://notcve.org/view.php?id=CVE-2010-4523
07 Jan 2011 — Multiple stack-based buffer overflows in libopensc in OpenSC 0.11.13 and earlier allow physically proximate attackers to execute arbitrary code via a long serial-number field on a smart card, related to (1) card-acos5.c, (2) card-atrust-acos.c, and (3) card-starcos.c. Múltiples desbordamientos de búfer basado en pila en libopensc en OpenSC v0.11.13 y anteriores permite a atacantes físicamente próximos ejecutar código arbitrario a través de un campo largo serial-number de una tarjeta inteligente, relacionado... • http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=607427 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •