Lucene search

[email protected]NVD:CVE-2014-3533

HistoryJul 19, 2014 - 7:55 p.m.

CVE-2014-3533

2014-07-1919:55:08

CWE-20

[email protected]

web.nvd.nist.gov

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:N/A:P

5.2 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

dbus 1.3.0 before 1.6.22 and 1.8.x before 1.8.6 allows local users to cause a denial of service (disconnect) via a certain sequence of crafted messages that cause the dbus-daemon to forward a message containing an invalid file descriptor.

Affected configurations

NVD

Node

debiandebian_linuxMatch7.0

Node

freedesktopdbusMatch1.3.0

freedesktopdbusMatch1.3.1

freedesktopdbusMatch1.4.0

freedesktopdbusMatch1.4.1

freedesktopdbusMatch1.4.4

freedesktopdbusMatch1.4.6

freedesktopdbusMatch1.4.8

freedesktopdbusMatch1.4.10

freedesktopdbusMatch1.4.12

freedesktopdbusMatch1.4.14

freedesktopdbusMatch1.4.16

freedesktopdbusMatch1.4.18

freedesktopdbusMatch1.4.20

freedesktopdbusMatch1.4.22

freedesktopdbusMatch1.4.24

freedesktopdbusMatch1.4.26

freedesktopdbusMatch1.5.0

freedesktopdbusMatch1.5.2

freedesktopdbusMatch1.5.4

freedesktopdbusMatch1.5.6

freedesktopdbusMatch1.5.8

freedesktopdbusMatch1.5.10

freedesktopdbusMatch1.5.12

freedesktopdbusMatch1.6.0

freedesktopdbusMatch1.6.2

freedesktopdbusMatch1.6.10

freedesktopdbusMatch1.6.12

freedesktopdbusMatch1.6.14

freedesktopdbusMatch1.6.16

freedesktopdbusMatch1.6.18

freedesktopdbusMatch1.6.20

freedesktopdbusMatch1.8.0

freedesktopdbusMatch1.8.2

freedesktopdbusMatch1.8.4

Node

mageia_projectmageiaMatch3

mageia_projectmageiaMatch4

Node

opensuseopensuseMatch12.3

References

advisories.mageia.org/MGASA-2014-0294.html

lists.opensuse.org/opensuse-updates/2014-09/msg00049.html

openwall.com/lists/oss-security/2014/07/02/4

secunia.com/advisories/59611

secunia.com/advisories/59798

secunia.com/advisories/60236

www.debian.org/security/2014/dsa-2971

www.mandriva.com/security/advisories?name=MDVSA-2015:176

www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html

bugs.freedesktop.org/show_bug.cgi?id=79694

bugs.freedesktop.org/show_bug.cgi?id=80469

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:N/A:P

5.2 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for NVD:CVE-2014-3533

ubuntucve1 cvelist1 cve1 debiancve1 prion1 nessus18 mageia1 securityvulns2 openvas12 freebsd1 ubuntu1 debian2 fedora6 osv1 gentoo1