Lucene search
+L

119 matches found

nvd
nvd
added 2014/07/01 5:55 p.m.19 views

CVE-2014-3477

The dbus-daemon in D-Bus 1.2.x through 1.4.x, 1.6.x before 1.6.20, and 1.8.x before 1.8.4, sends an AccessDenied error to the service instead of a client when the client is prohibited from accessing the service, which allows local users to cause a denial of service initialization failure and exit...

4CVSS5.5AI score0.00444EPSS
Exploits0References13
attackerkb
attackerkb
added 2014/07/01 5:55 p.m.5 views

CVE-2014-3477

The dbus-daemon in D-Bus 1.2.x through 1.4.x, 1.6.x before 1.6.20, and 1.8.x before 1.8.4, sends an AccessDenied error to the service instead of a client when the client is prohibited from accessing the service, which allows local users to cause a denial of service initialization failure and exit...

4CVSS5.2AI score0.00444EPSS
Exploits0References15
prion
prion
added 2014/07/01 5:55 p.m.22 views

Design/Logic Flaw

The dbus-daemon in D-Bus 1.2.x through 1.4.x, 1.6.x before 1.6.20, and 1.8.x before 1.8.4, sends an AccessDenied error to the service instead of a client when the client is prohibited from accessing the service, which allows local users to cause a denial of service initialization failure and exit...

2.1CVSS6.9AI score0.00444EPSS
Exploits0References13Affected Software2
cve
cve
added 2014/07/01 5:0 p.m.116 views

CVE-2014-3477

CVE-2014-3477 affects the D-Bus dbus-daemon. Local attackers can trigger a DoS (initialization failure/exit) or potentially a side‑channel attack by sending a D-Bus message to an inactive service. Affected are D-Bus/dbus-daemon versions: 1.2.x–1.4.x, 1.6.x before 1.6.20, and 1.8.x before 1.8.4. M...

4CVSS6.2AI score0.00444EPSS
Exploits0References13Affected Software2
debiancve
debiancve
added 2014/07/01 5:0 p.m.42 views

CVE-2014-3477

The dbus-daemon in D-Bus 1.2.x through 1.4.x, 1.6.x before 1.6.20, and 1.8.x before 1.8.4, sends an AccessDenied error to the service instead of a client when the client is prohibited from accessing the service, which allows local users to cause a denial of service initialization failure and exit...

4CVSS4.3AI score0.00444EPSS
Exploits0
osv
osv
added 2014/07/01 12:0 a.m.3 views

UBUNTU-CVE-2014-3477

The dbus-daemon in D-Bus 1.2.x through 1.4.x, 1.6.x before 1.6.20, and 1.8.x before 1.8.4, sends an AccessDenied error to the service instead of a client when the client is prohibited from accessing the service, which allows local users to cause a denial of service initialization failure and exit...

4CVSS6.1AI score0.00444EPSS
Exploits0References4
freebsd
freebsd
added 2014/06/10 12:0 a.m.25 views

dbus -- local DoS

Simon MvVittie reports: Alban Crequy at Collabora Ltd. discovered and fixed a denial-of-service flaw in dbus-daemon, part of the reference implementation of D-Bus. Additionally, in highly unusual environments the same flaw could lead to a side channel between processes that should not be able to...

4CVSS5.6AI score0.00444EPSS
Exploits0References1
openvas
openvas
added 2012/09/17 12:0 a.m.31 views

RedHat Update for dbus RHSA-2012:1261-01

Check for the Version of dbus OpenVAS Vulnerability Test RedHat Update for dbus RHSA-2012:1261-01 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms o...

6.9CVSS5.6AI score0.04514EPSS
Exploits4References2
openvas
openvas
added 2012/09/17 12:0 a.m.30 views

CentOS Update for dbus CESA-2012:1261 centos6

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

6.9CVSS7AI score0.04514EPSS
Exploits4References2
nessus
nessus
added 2012/08/01 12:0 a.m.23 views

Scientific Linux Security Update : nss_ldap on SL4.x i386/x86_64

A race condition was discovered in nssldap, which affected certain applications that make LDAP connections, such as Dovecot. This could cause nssldap to answer a request for information about one user with the information about a different user. CVE-2007-5794 As well, this updated package fixes t...

4.3CVSS5.7AI score0.01164EPSS
Exploits1References2
centos
centos
added 2011/09/03 6:50 p.m.56 views

dbus security update

CentOS Errata and Security Advisory CESA-2011:1132 Updated dbus packages that fix one security issue are now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base...

4.6CVSS5.7AI score0.00386EPSS
Exploits0References7
centos
centos
added 2011/04/14 11:47 p.m.67 views

dbus security update

CentOS Errata and Security Advisory CESA-2011:0376 Updated dbus packages that fix one security issue are now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base...

2.1CVSS5.8AI score0.0058EPSS
Exploits1References7
nessus
nessus
added 2010/01/06 12:0 a.m.34 views

CentOS 5 : dbus (CESA-2008:0159)

Updated dbus packages that fix an issue with circumventing the security policy are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. D-Bus is a system for sending messages between applications. It is used both for the system-wide...

4.6CVSS6.9AI score0.00408EPSS
Exploits2References3
nessus
nessus
added 2008/07/25 12:0 a.m.25 views

RHEL 4 : nss_ldap (RHSA-2008:0715)

An updated nssldap package that fixes a security issue and several bugs is now available. This update has been rated as having low security impact by the Red Hat Security Response Team. The nssldap package contains the nssldap and pamldap modules. The nssldap module is a plug-in which allows...

4.3CVSS5.6AI score0.01164EPSS
Exploits1References3
redhat
redhat
added 2008/07/24 4:53 p.m.28 views

Low: Red Hat Security Advisory: nss_ldap security and bug fix update

An updated nssldap package that fixes a security issue and several bugs is now available. This update has been rated as having low security impact by the Red Hat Security Response Team. The nssldap package contains the nssldap and pamldap modules. The nssldap module is a plug-in which allows...

4.3CVSS5.8AI score0.01164EPSS
Exploits1References7
nvd
nvd
added 2008/02/29 7:44 p.m.21 views

CVE-2008-0595

dbus-daemon in D-Bus before 1.0.3, and 1.1.x before 1.1.20, recognizes sendinterface attributes in allow directives in the security policy only for fully qualified method calls, which allows local users to bypass intended access restrictions via a method call with a NULL interface...

4.6CVSS5.3AI score0.00408EPSS
Exploits2References26
ubuntucve
ubuntucve
added 2008/02/29 7:44 p.m.34 views

CVE-2008-0595

dbus-daemon in D-Bus before 1.0.3, and 1.1.x before 1.1.20, recognizes sendinterface attributes in allow directives in the security policy only for fully qualified method calls, which allows local users to bypass intended access restrictions via a method call with a NULL interface...

4.6CVSS7AI score0.00408EPSS
Exploits2References2
osv
osv
added 2008/02/29 7:44 p.m.2 views

DEBIAN-CVE-2008-0595

dbus-daemon in D-Bus before 1.0.3, and 1.1.x before 1.1.20, recognizes sendinterface attributes in allow directives in the security policy only for fully qualified method calls, which allows local users to bypass intended access restrictions via a method call with a NULL interface...

4.6CVSS6.5AI score0.00408EPSS
Exploits2References1
cvelist
cvelist
added 2008/02/29 7:0 p.m.25 views

CVE-2008-0595

dbus-daemon in D-Bus before 1.0.3, and 1.1.x before 1.1.20, recognizes sendinterface attributes in allow directives in the security policy only for fully qualified method calls, which allows local users to bypass intended access restrictions via a method call with a NULL interface...

5.2AI score0.00408EPSS
Exploits2References26
Rows per page
Query Builder