|Title:||OpenSC Security Bypass Vulnerability|
|Summary:||Check for the version of OpenSC|
Overview: This host is installed with OpenSC and is prone to security bypass
Security issue due to OpenSC incorrectly initializing private data objects.
This can be exploited to access data objects which are intended to be
private through low level APDU commands or debugging tool.
Successful exploitation will allow attacker to access data objects
which are intended to be private.
Impact Level: Application
OpenSC version prior to 0.11.7 on Linux.
Upgrade to OpenSC version 0.11.7
BugTraq ID: 33922|
Common Vulnerability Exposure (CVE) ID: CVE-2009-0368
Debian Security Information: DSA-1734 (Google Search)
SuSE Security Announcement: SUSE-SR:2009:010 (Google Search)
XForce ISS Database: opensc-pkcs-unauth-access(48958)
|Copyright||Copyright (C) 2009 Greenbone Networks GmbH|
|This is only one of 40037 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.