Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-2597

Overview

Vulnerability Score 4.9 4.9
CVE Id CVE-2014-2597
Last Modified 21 Apr 2014 02:15:30
Published 18 Apr 2014 06:14:38
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2014-2597

Summary

PCNetSoftware RAC Server 4.0.4 and 4.0.5 allows local users to cause a denial of service (disabled keyboard or crash) via a large input buffer to unspecified IOCTL requests in RACDriver.sys, which triggers a buffer over-read.

Vulnerable Systems

Application

  • Remote-rac Rac Server 4.0.4

  • Remote-rac Rac Server 4.0.5


References

MISC - https://www.portcullis-security.com/security-research-and-downloads/security-advisories/cve-2014-2597/

SECUNIA - 58090

FULLDISC - 20140416 CVE-2014-2597 - Denial of Service in PCNetSoftware RAC Server


Last Updated: 27 May 2016 11:05:02