Date published: 2014-04-18T18:14:38.730-04:00
Date last modified: 2014-04-21T14:15:30.817-04:00
CVSS Score: 4.9
Principal attack vector: LOCAL
Reference URL: http://seclists.org/fulldisclosure/2014/Apr/221
Summary: PCNetSoftware RAC Server 4.0.4 and 4.0.5 allows local users to cause a denial of service (disabled keyboard or crash) via a large input buffer to unspecified IOCTL requests in RACDriver.sys, which triggers a buffer over-read.