Lucene search

[email protected]CVE-2005-0201

HistoryJun 29, 2005 - 4:00 a.m.

CVE-2005-0201

2005-06-2904:00:00

[email protected]

web.nvd.nist.gov

cve-2005-0201

d-bus

dbus

security vulnerability

local access

session bus

6.1 Medium

AI Score

Confidence

Low

2.1 Low

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

0.0004 Low

EPSS

Percentile

5.2%

JSON

D-BUS (dbus) before 0.22 does not properly restrict access to a socket, if the socket address is known, which allows local users to listen or send arbitrary messages on another user’s per-user session bus via that socket.

Affected configurations

NVD

Node

d-busd-busRange≤0.22

CPENameOperatorVersion
d-bus:d-busd-busle0.22

CPE	Name	Operator	Version
d-bus:d-bus	d-bus	le	0.22

References

secunia.com/advisories/14119

secunia.com/advisories/15638

secunia.com/advisories/15833

secunia.com/advisories/15844

securitytracker.com/id?1013075

www.auscert.org.au/render.html?it=5156

www.mandriva.com/security/advisories?name=MDKSA-2005:105

www.redhat.com/support/errata/RHSA-2005-102.html

www.securityfocus.com/bid/12435

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10973

usn.ubuntu.com/144-1/

6.1 Medium

AI Score

Confidence

Low

2.1 Low

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

0.0004 Low

EPSS

Percentile

5.2%

JSON

Related for CVE-2005-0201

nessus6 nvd1 cvelist1 redhat1 debiancve1 openvas1 ubuntu1 ubuntucve1 centos1