CVE-2008-4311

🗓️ 10 Dec 2008 00:00:00Reported by redhatType

The default configuration of system.conf in D-Bus (aka DBus) before 1.2.6 omits the send_type attribute in certain rules, which allows local users to bypass intended access restrictions

Reporter	Title	Published	Views	Family All 192
BDU FSTEC	Vulnerabilities in the SUSE Linux Enterprise operating system that allow attackers to compromise the confidentiality, integrity, and accessibility of protected information	28 Apr 201500:00	–	bdu_fstec
BDU FSTEC	Vulnerabilities in the SUSE Linux Enterprise operating system that allow attackers to compromise the confidentiality, integrity, and accessibility of protected information	28 Apr 201500:00	–	bdu_fstec
BDU FSTEC	Vulnerabilities in the SUSE Linux Enterprise operating system that allow attackers to compromise the confidentiality, integrity, and accessibility of protected information	28 Apr 201500:00	–	bdu_fstec
BDU FSTEC	Vulnerabilities in the SUSE Linux Enterprise operating system that allow attackers to compromise the confidentiality, integrity, and accessibility of protected information	28 Apr 201500:00	–	bdu_fstec
BDU FSTEC	Vulnerabilities in the SUSE Linux Enterprise operating system that allow attackers to compromise the confidentiality, integrity, and accessibility of protected information	28 Apr 201500:00	–	bdu_fstec
BDU FSTEC	Vulnerabilities in the SUSE Linux Enterprise operating system that allow attackers to compromise the confidentiality, integrity, and accessibility of protected information	28 Apr 201500:00	–	bdu_fstec
BDU FSTEC	Vulnerabilities in the SUSE Linux Enterprise operating system that allow attackers to compromise the confidentiality, integrity, and accessibility of protected information	28 Apr 201500:00	–	bdu_fstec
BDU FSTEC	Vulnerabilities in the SUSE Linux Enterprise operating system that allow attackers to compromise the confidentiality, integrity, and accessibility of protected information	28 Apr 201500:00	–	bdu_fstec
BDU FSTEC	Vulnerabilities in the SUSE Linux Enterprise operating system that allow attackers to compromise the confidentiality, integrity, and accessibility of protected information	28 Apr 201500:00	–	bdu_fstec
BDU FSTEC	Vulnerabilities in the SUSE Linux Enterprise operating system that allow attackers to compromise the confidentiality, integrity, and accessibility of protected information	28 Apr 201500:00	–	bdu_fstec

NVD

Node

freedesktop dbusRange≤1.2.4

freedesktop dbusMatch0.1

freedesktop dbusMatch0.2

freedesktop dbusMatch0.3

freedesktop dbusMatch0.4

freedesktop dbusMatch0.5

freedesktop dbusMatch0.6

freedesktop dbusMatch0.7

freedesktop dbusMatch0.8

freedesktop dbusMatch0.9

freedesktop dbusMatch0.10

freedesktop dbusMatch0.11

freedesktop dbusMatch0.12

freedesktop dbusMatch0.13

freedesktop dbusMatch0.20

freedesktop dbusMatch0.21

freedesktop dbusMatch0.22

freedesktop dbusMatch0.23

freedesktop dbusMatch0.23.1

freedesktop dbusMatch0.23.2

freedesktop dbusMatch0.23.3

freedesktop dbusMatch0.31

freedesktop dbusMatch0.32

freedesktop dbusMatch0.33

freedesktop dbusMatch0.34

freedesktop dbusMatch0.35

freedesktop dbusMatch0.35.1

freedesktop dbusMatch0.35.2

freedesktop dbusMatch0.36

freedesktop dbusMatch0.36.1

freedesktop dbusMatch0.36.2

freedesktop dbusMatch0.50

freedesktop dbusMatch0.60

freedesktop dbusMatch0.61

freedesktop dbusMatch0.62

freedesktop dbusMatch0.90

freedesktop dbusMatch0.91

freedesktop dbusMatch0.92

freedesktop dbusMatch1.0

freedesktop dbusMatch1.0rc1

freedesktop dbusMatch1.0rc2

freedesktop dbusMatch1.0rc3

freedesktop dbusMatch1.1.0

freedesktop dbusMatch1.1.1

freedesktop dbusMatch1.1.2

freedesktop dbusMatch1.1.4

Source	Link
secunia	www.secunia.com/advisories/34360
secunia	www.secunia.com/advisories/33047
lists	www.lists.opensuse.org/opensuse-updates/2012-10/msg00094.html
bugs	www.bugs.debian.org/cgi-bin/bugreport.cgi
lists	www.lists.opensuse.org/opensuse-security-announce/2009-04/msg00010.html
lists	www.lists.opensuse.org/opensuse-security-announce/2009-03/msg00003.html
secunia	www.secunia.com/advisories/33055
vupen	www.vupen.com/english/advisories/2008/3355
redhat	www.redhat.com/archives/fedora-package-announce/2008-December/msg00436.html
bugs	www.bugs.freedesktop.org/show_bug.cgi

16 Jun 2026 22:57Current

7.4High risk

Vulners AI Score7.4

CVSS 24.6

EPSS0.00409

CWE-16