Lucene search
+L

2005 matches found

OSV
OSV
added 2009/04/27 6:0 p.m.4 views

DEBIAN-CVE-2009-1189

The dbusvalidatesignaturewithreason function dbus-marshal-validate.c in D-Bus aka DBus before 1.2.14 uses incorrect logic to validate a basic type, which allows remote attackers to spoof a signature via a crafted key. NOTE: this is due to an incorrect fix for CVE-2008-3834...

3.6CVSS6.9AI score0.01332EPSS
Exploits1References1
CVE
CVE
added 2009/04/27 5:43 p.m.87 views

CVE-2009-1189

The vulnerability CVE-2009-1189 affects the D-Bus library (libdbus) in versions before 1.2.14, due to incorrect logic in _dbus_validate_signature_with_reason (dbus-marshal-validate.c). This flaw allows remote attackers to spoof a signature via a crafted key. The issue stems from an incomplete fix...

3.6CVSS7.2AI score0.01332EPSS
Exploits1References14Affected Software1
Positive Technologies
Positive Technologies
added 2009/04/27 12:0 a.m.2 views

PT-2009-1011 · Freedesktop.Org +1 · D-Bus +1

Name of the Vulnerable Software and Affected Versions: D-Bus versions prior to 1.2.14 D-Bus version 1.1.2 Description: The issue is due to incorrect logic used in the dbus validate signature with reason function to validate a basic type, allowing remote attackers to spoof a signature via a crafte...

4.6CVSS7.2AI score0.01332EPSS
Exploits1References32
Tenable Nessus
Tenable Nessus
added 2009/04/23 12:0 a.m.12 views

MDVA-2008:135-1 : draksnapshot

This update fixes several issues in draksnapshot: The draksnapshot applet received the following fixes: - on desktop startup, it will wait for 30s before checking for available disc so that notification is positioned at the right place, on the applet icon - it prevents crashing if DBus is not...

6.9AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2009/04/23 12:0 a.m.29 views

Mandriva Linux Security Advisory : dbus (MDVSA-2008:054)

A vulnerability was discovered by Havoc Pennington in how the dbus-daemon applied its security policy. A user with the ability to connect to the dbus-daemon could possibly execute certain method calls that they should not normally have access to. The updated packages have been patched to correct...

4.6CVSS7.1AI score0.00408EPSS
Exploits2References1
Tenable Nessus
Tenable Nessus
added 2009/04/23 12:0 a.m.32 views

Fedora 10 : dbus-1.2.6-1.fc10 (2008-10733)

A system restart is required for this update to take effect. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional...

4.6CVSS5.8AI score0.00409EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2009/04/23 12:0 a.m.23 views

Mandriva Linux Security Advisory : dbus (MDVSA-2008:213)

The D-Bus library did not correctly validate certain corrupted signatures which could cause a crash of applications linked against the D-Bus library if a local user were to send a specially crafted D-Bus request CVE-2008-3834. The updated packages have been patched to prevent this issue...

2.1CVSS6.8AI score0.04623EPSS
Exploits8References1
Tenable Nessus
Tenable Nessus
added 2009/04/23 12:0 a.m.31 views

Ubuntu 6.06 LTS / 7.04 / 7.10 / 8.04 LTS : dbus vulnerabilities (USN-653-1)

Havoc Pennington discovered that the D-Bus daemon did not correctly validate certain security policies. If a local user sent a specially crafted D-Bus request, they could bypass security policies that had a 'sendinterface' defined. CVE-2008-0595 It was discovered that the D-Bus library did not...

4.6CVSS6.9AI score0.04623EPSS
Exploits10References3
Tenable Nessus
Tenable Nessus
added 2009/04/23 12:0 a.m.35 views

Ubuntu 6.06 LTS / 8.10 : network-manager vulnerability (USN-727-2)

USN-727-1 fixed vulnerabilities in network-manager-applet. This advisory provides the corresponding updates for NetworkManager. It was discovered that NetworkManager did not properly enforce permissions when responding to dbus requests. A local user could perform dbus queries to view system and...

6.2CVSS7.7AI score0.00785EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2009/04/23 12:0 a.m.28 views

Ubuntu 7.10 / 8.04 LTS / 8.10 : network-manager-applet vulnerabilities (USN-727-1)

It was discovered that network-manager-applet did not properly enforce permissions when responding to dbus requests. A local user could perform dbus queries to view other users' network connection passwords and pre-shared keys. CVE-2009-0365 It was discovered that network-manager-applet did not...

6.2CVSS7.7AI score0.00785EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2009/04/21 12:0 a.m.26 views

openSUSE 10 Security Update : bluez-audio (bluez-audio-6197)

The dbus package used a too permissive configuration. Therefore intended access control for some services was not applied CVE-2008-4311. The new configuration denies access by default. Some dbus services may break due to this setting and need an updated configuration as well. The previous bluez...

4.6CVSS5.8AI score0.00409EPSS
Exploits0References1
securityvulns
securityvulns
added 2009/04/12 12:0 a.m.24 views

Wicd information leak

User can hijack DBus messages intended for Wicd server process...

2.1CVSS1.5AI score0.00329EPSS
Exploits1References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2009/04/11 12:0 a.m.19 views

GLSA-200904-12 : Wicd: Information disclosure

The remote host is affected by the vulnerability described in GLSA-200904-12 Wicd: Information disclosure Tiziano Mueller of Gentoo discovered that the DBus configuration file for Wicd allows arbitrary users to own the org.wicd.daemon object. Impact : A local attacker could exploit this...

2.1CVSS5.8AI score0.00329EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2009/04/09 12:0 a.m.5 views

Mandriva Update for dbus MDVA-2008:111 (dbus)

Check for the Version of dbus OpenVAS Vulnerability Test Mandriva Update for dbus MDVA-2008:111 dbus Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the term...

7.4AI score
Exploits0References2
OpenVAS
OpenVAS
added 2009/04/09 12:0 a.m.21 views

Mandriva Update for draksnapshot MDVA-2008:135 (draksnapshot)

Check for the Version of draksnapshot OpenVAS Vulnerability Test Mandriva Update for draksnapshot MDVA-2008:135 draksnapshot Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...

0.2AI score
Exploits0References2
OpenVAS
OpenVAS
added 2009/04/09 12:0 a.m.33 views

Mandriva Update for dbus MDVSA-2008:054 (dbus)

Check for the Version of dbus OpenVAS Vulnerability Test Mandriva Update for dbus MDVSA-2008:054 dbus Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...

4.6CVSS5.5AI score0.00408EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2009/04/09 12:0 a.m.36 views

Mandriva Update for dbus MDVSA-2008:054 (dbus)

Check for the Version of dbus OpenVAS Vulnerability Test Mandriva Update for dbus MDVSA-2008:054 dbus Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...

4.6CVSS5.5AI score0.00408EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2009/04/09 12:0 a.m.16 views

Mandriva Update for dbus MDVA-2008:111 (dbus)

Check for the Version of dbus OpenVAS Vulnerability Test Mandriva Update for dbus MDVA-2008:111 dbus Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the term...

7.4AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2009/03/25 12:0 a.m.28 views

openSUSE 10 Security Update : bluez-cups (bluez-cups-6118)

The dbus package used a too permissive configuration. Therefore intended access control for some services was not applied CVE-2008-4311. The new configuration denies access by default. Some dbus services may break due to this setting and need an updated configuration as well. %NASLMINLEVEL 70300 ...

4.6CVSS5.8AI score0.00409EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2009/03/23 12:0 a.m.25 views

Ubuntu Update for dbus vulnerability USN-401-1

Ubuntu Update for Linux kernel vulnerabilities USN-401-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN4011.nasl 7969 2017-12-01 09:23:16Z santu $ Ubuntu Update for dbus vulnerability USN-401-1 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH,...

1.7CVSS5.5AI score0.00376EPSS
Exploits0References2
Rows per page
Query Builder