1654 matches found
CVE-2006-6107
D-Bus vulnerability CVE-2006-6107: An unspecified flaw in match_rule_equal (bus/signals.c) affects D-Bus pre-1.0.2, enabling local attackers to remove match rules for other apps and cause a denial of service (lost process messages). The provided documents do not specify a fixed version or remedia...
CVE-2006-6107
Unspecified vulnerability in the matchruleequal function in bus/signals.c in D-Bus before 1.0.2 allows local applications to remove match rules for other applications and cause a denial of service lost process messages...
dbus -- match_rule_equal() Weakness
Secunia reports: D-Bus have a weakness, which can be exploited by malicious, local users to cause a DoS Denial of Service. An error within the "matchruleequal" function can be exploited to disable the ability of other processes to receive messages by removing their matches from D-Bus...
CVE-2005-0201
D-BUS dbus before 0.22 does not properly restrict access to a socket, if the socket address is known, which allows local users to listen or send arbitrary messages on another user's per-user session bus via that socket...
CVE-2005-0201
D-BUS dbus before 0.22 does not properly restrict access to a socket, if the socket address is known, which allows local users to listen or send arbitrary messages on another user's per-user session bus via that socket...
CVE-2005-0201
D-BUS dbus before 0.22 does not properly restrict access to a socket, if the socket address is known, which allows local users to listen or send arbitrary messages on another user's per-user session bus via that socket...
CVE-2005-0201
D-BUS dbus before 0.22 does not properly restrict access to a socket, if the socket address is known, which allows local users to listen or send arbitrary messages on another user's per-user session bus via that socket...
CVE-2005-0201
CVE-2005-0201 affects D-BUS (dbus) before 0.22, where insufficient socket access restriction allows a local user to listen to or send arbitrary messages on another user’s per-user session bus if the socket address is known. This is a local-privilege/confidentiality issue. Connected advisories ind...
Mandrake Linux Security Advisory : dbus (MDKSA-2005:105)
Dan Reed discovered a vulnerability in the D-BUS system for sending messages between applications. He found that a user can send and listen to messages on another user's per-user session bus if they knew the address of the socket. The updated packages have been patched to correct this problem...
dbus security update
CentOS Errata and Security Advisory CESA-2005:102 Updated dbus packages that fix a security issue are now available for Red Hat Enterprise Linux 4. This update has been rated as having low security impact by the Red Hat Security Response Team. D-BUS is a system for sending messages between...
Low: Red Hat Security Advisory: dbus security update.
Updated dbus packages that fix a security issue are now available for Red Hat Enterprise Linux 4. This update has been rated as having low security impact by the Red Hat Security Response Team. D-BUS is a system for sending messages between applications. It is used both for the systemwide message...
security flaw
D-BUS dbus before 0.22 does not properly restrict access to a socket, if the socket address is known, which allows local users to listen or send arbitrary messages on another user's per-user session bus via that socket...
D-BUS message bus system session hijack
Malicious local user can connect to another user's session bus...
[SA14119] D-BUS Session Bus Hijack Vulnerability
TITLE: D-BUS Session Bus Hijack Vulnerability SECUNIA ADVISORY ID: SA14119 VERIFY ADVISORY: http://secunia.com/advisories/14119/ CRITICAL: Less critical IMPACT: Hijacking WHERE: Local system SOFTWARE: D-BUS 0.x http://secunia.com/product/4599/ DESCRIPTION: Daniel Reed has reported a vulnerability...