Denial of Service Vulnerability in PCNetSoftware RAC Server 4.0.4 and 4.0.5

Denial of Service Vulnerability in PCNetSoftware RAC Server 4.0.4 and 4.0.5

CVE-2014-2597 · MEDIUM Severity

AV:L/AC:L/AU:N/C:N/I:N/A:C

PCNetSoftware RAC Server 4.0.4 and 4.0.5 allows local users to cause a denial of service (disabled keyboard or crash) via a large input buffer to unspecified IOCTL requests in RACDriver.sys, which triggers a buffer over-read.

Learn more about our Cis Benchmark Audit For Server Software.