CVE-2014-2597CVE-2014-2597

Affected configuration(s):

cpe:/a:remote-rac:rac_server:4.0.4
cpe:/a:remote-rac:rac_server:4.0.5

Date published: 2014-04-18T18:14:38.730-04:00

Date last modified: 2014-04-21T14:15:30.817-04:00

CVSS Score: 4.9

Principal attack vector: LOCAL

Complexity:  LOW

Reference URL: http://seclists.org/fulldisclosure/2014/Apr/221

Summary: PCNetSoftware RAC Server 4.0.4 and 4.0.5 allows local users to cause a denial of service (disabled keyboard or crash) via a large input buffer to unspecified IOCTL requests in RACDriver.sys, which triggers a buffer over-read.

CategoriesUncategorised

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.