cve-2014-3533
Vulnerability from cvelistv5
Published
2014-07-19 19:00
Modified
2024-08-06 10:50
Severity ?
EPSS score ?
Summary
dbus 1.3.0 before 1.6.22 and 1.8.x before 1.8.6 allows local users to cause a denial of service (disconnect) via a certain sequence of crafted messages that cause the dbus-daemon to forward a message containing an invalid file descriptor.
References
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T10:50:16.803Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "59798",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/59798"
},
{
"name": "59611",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/59611"
},
{
"name": "openSUSE-SU-2014:1239",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-updates/2014-09/msg00049.html"
},
{
"name": "60236",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/60236"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://bugs.freedesktop.org/show_bug.cgi?id=80469"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://advisories.mageia.org/MGASA-2014-0294.html"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html"
},
{
"name": "DSA-2971",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN",
"x_transferred"
],
"url": "http://www.debian.org/security/2014/dsa-2971"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://bugs.freedesktop.org/show_bug.cgi?id=79694"
},
{
"name": "[oss-security] 20140702 CVE-2014-3532, -3533: two local DoS vulnerabilities in dbus-daemon",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://openwall.com/lists/oss-security/2014/07/02/4"
},
{
"name": "MDVSA-2015:176",
"tags": [
"vendor-advisory",
"x_refsource_MANDRIVA",
"x_transferred"
],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:176"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2014-07-02T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "dbus 1.3.0 before 1.6.22 and 1.8.x before 1.8.6 allows local users to cause a denial of service (disconnect) via a certain sequence of crafted messages that cause the dbus-daemon to forward a message containing an invalid file descriptor."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2016-10-12T16:57:01",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"name": "59798",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/59798"
},
{
"name": "59611",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/59611"
},
{
"name": "openSUSE-SU-2014:1239",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-updates/2014-09/msg00049.html"
},
{
"name": "60236",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/60236"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://bugs.freedesktop.org/show_bug.cgi?id=80469"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://advisories.mageia.org/MGASA-2014-0294.html"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html"
},
{
"name": "DSA-2971",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN"
],
"url": "http://www.debian.org/security/2014/dsa-2971"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://bugs.freedesktop.org/show_bug.cgi?id=79694"
},
{
"name": "[oss-security] 20140702 CVE-2014-3532, -3533: two local DoS vulnerabilities in dbus-daemon",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://openwall.com/lists/oss-security/2014/07/02/4"
},
{
"name": "MDVSA-2015:176",
"tags": [
"vendor-advisory",
"x_refsource_MANDRIVA"
],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:176"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2014-3533",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "dbus 1.3.0 before 1.6.22 and 1.8.x before 1.8.6 allows local users to cause a denial of service (disconnect) via a certain sequence of crafted messages that cause the dbus-daemon to forward a message containing an invalid file descriptor."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "59798",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/59798"
},
{
"name": "59611",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/59611"
},
{
"name": "openSUSE-SU-2014:1239",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-updates/2014-09/msg00049.html"
},
{
"name": "60236",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/60236"
},
{
"name": "https://bugs.freedesktop.org/show_bug.cgi?id=80469",
"refsource": "CONFIRM",
"url": "https://bugs.freedesktop.org/show_bug.cgi?id=80469"
},
{
"name": "http://advisories.mageia.org/MGASA-2014-0294.html",
"refsource": "CONFIRM",
"url": "http://advisories.mageia.org/MGASA-2014-0294.html"
},
{
"name": "http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html",
"refsource": "CONFIRM",
"url": "http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html"
},
{
"name": "DSA-2971",
"refsource": "DEBIAN",
"url": "http://www.debian.org/security/2014/dsa-2971"
},
{
"name": "https://bugs.freedesktop.org/show_bug.cgi?id=79694",
"refsource": "CONFIRM",
"url": "https://bugs.freedesktop.org/show_bug.cgi?id=79694"
},
{
"name": "[oss-security] 20140702 CVE-2014-3532, -3533: two local DoS vulnerabilities in dbus-daemon",
"refsource": "MLIST",
"url": "http://openwall.com/lists/oss-security/2014/07/02/4"
},
{
"name": "MDVSA-2015:176",
"refsource": "MANDRIVA",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:176"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2014-3533",
"datePublished": "2014-07-19T19:00:00",
"dateReserved": "2014-05-14T00:00:00",
"dateUpdated": "2024-08-06T10:50:16.803Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"fkie_nvd": {
"configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"16F59A04-14CF-49E2-9973-645477EA09DA\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:freedesktop:dbus:1.3.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"96B154C1-28B1-4C8F-8D18-9A015CE81C25\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:freedesktop:dbus:1.3.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"357042A5-6CB3-44FD-AFAA-F626BBBA6747\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:freedesktop:dbus:1.4.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2D95FA2A-9CFB-4B02-A849-36431874AB7C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:freedesktop:dbus:1.4.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"EE4B9649-3F37-4700-A900-2D0EDFAB1FDB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:freedesktop:dbus:1.4.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"70C7FEDA-AE1E-4BD9-8998-9A6C01F80277\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:freedesktop:dbus:1.4.6:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"71648B78-E1D4-4F74-B029-F6ECE65E84A7\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:freedesktop:dbus:1.4.8:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"AD3C815C-E979-45DF-AA05-1A2CAF4DF910\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:freedesktop:dbus:1.4.10:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6E72AD88-640C-4B27-9A56-570151667FD5\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:freedesktop:dbus:1.4.12:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3D986A4B-827C-4064-9004-E4D6FA524FFC\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:freedesktop:dbus:1.4.14:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F7197910-4381-4D23-85A1-5348D20AAD63\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:freedesktop:dbus:1.4.16:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B1059BE8-1044-4DC7-9B41-E76A56225000\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:freedesktop:dbus:1.4.18:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2124D0C2-21A6-4C72-97B9-A53BCDA697DD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:freedesktop:dbus:1.4.20:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1646C38B-596F-4614-93FC-0BFB88E9F034\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:freedesktop:dbus:1.4.22:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0FB75B1D-CB6D-4152-B4F2-C24A6E6F830B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:freedesktop:dbus:1.4.24:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9914C4DF-2B1B-416E-BE8A-274676F8CDA5\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:freedesktop:dbus:1.4.26:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A2126812-E627-4514-8895-177F6A139B8C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:freedesktop:dbus:1.5.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DFC34AF2-60BD-4D52-8704-B0A4E3B9F35E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:freedesktop:dbus:1.5.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"AA8D645B-19A4-4AF5-A667-C95F90B8F282\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:freedesktop:dbus:1.5.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4E8E5358-8466-4D3A-8AE4-3EE55700140D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:freedesktop:dbus:1.5.6:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7B175C3A-44FC-4069-99F4-CFF78DAF6C60\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:freedesktop:dbus:1.5.8:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"36C6830D-92D2-49EC-BD13-BA7EE7720E61\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:freedesktop:dbus:1.5.10:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3E33E9B8-4543-46D0-837B-DCCAC25C47E7\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:freedesktop:dbus:1.5.12:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"831CFD41-47B0-4920-B118-7AD2CAFBFA85\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:freedesktop:dbus:1.6.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0A772FA8-668B-45AC-9813-0B5ADCE91DD6\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:freedesktop:dbus:1.6.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E155EB75-8D98-4469-98CB-81A40ABF0D9C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:freedesktop:dbus:1.6.10:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A24ED739-0B39-4A70-B7E0-8A859759233D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:freedesktop:dbus:1.6.12:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F89DEA95-DFB8-4D75-BE65-A477972D143E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:freedesktop:dbus:1.6.14:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"76BCD0D9-4F06-46E7-8734-AAEE28DD1631\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:freedesktop:dbus:1.6.16:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C22CA4E4-458D-465A-8272-473055A608EB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:freedesktop:dbus:1.6.18:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8133A184-FC2E-41AC-B2C2-EFD819B011FC\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:freedesktop:dbus:1.6.20:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2D5009D1-BDA4-4DFC-A629-07144BDAEC93\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:freedesktop:dbus:1.8.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9AB63C07-1022-4EEE-B419-4E0A80AE64A5\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:freedesktop:dbus:1.8.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"68B161B9-7385-4C0B-AC4D-1145E1004B74\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:freedesktop:dbus:1.8.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6DD6AAFC-C18F-4AF5-B8D1-82F85F8421DC\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:mageia_project:mageia:3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F1911F9C-95A5-49DD-80F0-472BE92D7CDA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:mageia_project:mageia:4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"EDB6C80D-ADCA-481E-B54B-3BEA3D7D3107\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:opensuse:opensuse:12.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DFBF430B-0832-44B0-AA0E-BA9E467F7668\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"dbus 1.3.0 before 1.6.22 and 1.8.x before 1.8.6 allows local users to cause a denial of service (disconnect) via a certain sequence of crafted messages that cause the dbus-daemon to forward a message containing an invalid file descriptor.\"}, {\"lang\": \"es\", \"value\": \"dbus 1.3.0 anterior a 1.6.22 y 1.8.x anterior a 1.8.6 permite a usuarios locales causar una denegaci\\u00f3n de servicio (desconexi\\u00f3n) a trav\\u00e9s de cierta secuencias de mensajes manipulados que causan que el demonio de dbus reenv\\u00ede un mensaje que contiene un descriptor de ficheros inv\\u00e1lido.\"}]",
"id": "CVE-2014-3533",
"lastModified": "2024-11-21T02:08:19.100",
"metrics": "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:L/AC:L/Au:N/C:N/I:N/A:P\", \"baseScore\": 2.1, \"accessVector\": \"LOCAL\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"PARTIAL\"}, \"baseSeverity\": \"LOW\", \"exploitabilityScore\": 3.9, \"impactScore\": 2.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
"published": "2014-07-19T19:55:08.013",
"references": "[{\"url\": \"http://advisories.mageia.org/MGASA-2014-0294.html\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://lists.opensuse.org/opensuse-updates/2014-09/msg00049.html\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://openwall.com/lists/oss-security/2014/07/02/4\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://secunia.com/advisories/59611\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://secunia.com/advisories/59798\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://secunia.com/advisories/60236\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://www.debian.org/security/2014/dsa-2971\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://www.mandriva.com/security/advisories?name=MDVSA-2015:176\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://bugs.freedesktop.org/show_bug.cgi?id=79694\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://bugs.freedesktop.org/show_bug.cgi?id=80469\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://advisories.mageia.org/MGASA-2014-0294.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://lists.opensuse.org/opensuse-updates/2014-09/msg00049.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://openwall.com/lists/oss-security/2014/07/02/4\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/59611\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/59798\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/60236\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.debian.org/security/2014/dsa-2971\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.mandriva.com/security/advisories?name=MDVSA-2015:176\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://bugs.freedesktop.org/show_bug.cgi?id=79694\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://bugs.freedesktop.org/show_bug.cgi?id=80469\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}]",
"sourceIdentifier": "secalert@redhat.com",
"vulnStatus": "Modified",
"weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-20\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2014-3533\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2014-07-19T19:55:08.013\",\"lastModified\":\"2024-11-21T02:08:19.100\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"dbus 1.3.0 before 1.6.22 and 1.8.x before 1.8.6 allows local users to cause a denial of service (disconnect) via a certain sequence of crafted messages that cause the dbus-daemon to forward a message containing an invalid file descriptor.\"},{\"lang\":\"es\",\"value\":\"dbus 1.3.0 anterior a 1.6.22 y 1.8.x anterior a 1.8.6 permite a usuarios locales causar una denegaci\u00f3n de servicio (desconexi\u00f3n) a trav\u00e9s de cierta secuencias de mensajes manipulados que causan que el demonio de dbus reenv\u00ede un mensaje que contiene un descriptor de ficheros inv\u00e1lido.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:L/AC:L/Au:N/C:N/I:N/A:P\",\"baseScore\":2.1,\"accessVector\":\"LOCAL\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"LOW\",\"exploitabilityScore\":3.9,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-20\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"16F59A04-14CF-49E2-9973-645477EA09DA\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:freedesktop:dbus:1.3.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"96B154C1-28B1-4C8F-8D18-9A015CE81C25\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:freedesktop:dbus:1.3.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"357042A5-6CB3-44FD-AFAA-F626BBBA6747\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:freedesktop:dbus:1.4.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2D95FA2A-9CFB-4B02-A849-36431874AB7C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:freedesktop:dbus:1.4.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EE4B9649-3F37-4700-A900-2D0EDFAB1FDB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:freedesktop:dbus:1.4.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"70C7FEDA-AE1E-4BD9-8998-9A6C01F80277\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:freedesktop:dbus:1.4.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"71648B78-E1D4-4F74-B029-F6ECE65E84A7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:freedesktop:dbus:1.4.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AD3C815C-E979-45DF-AA05-1A2CAF4DF910\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:freedesktop:dbus:1.4.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6E72AD88-640C-4B27-9A56-570151667FD5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:freedesktop:dbus:1.4.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3D986A4B-827C-4064-9004-E4D6FA524FFC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:freedesktop:dbus:1.4.14:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F7197910-4381-4D23-85A1-5348D20AAD63\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:freedesktop:dbus:1.4.16:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B1059BE8-1044-4DC7-9B41-E76A56225000\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:freedesktop:dbus:1.4.18:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2124D0C2-21A6-4C72-97B9-A53BCDA697DD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:freedesktop:dbus:1.4.20:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1646C38B-596F-4614-93FC-0BFB88E9F034\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:freedesktop:dbus:1.4.22:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0FB75B1D-CB6D-4152-B4F2-C24A6E6F830B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:freedesktop:dbus:1.4.24:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9914C4DF-2B1B-416E-BE8A-274676F8CDA5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:freedesktop:dbus:1.4.26:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A2126812-E627-4514-8895-177F6A139B8C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:freedesktop:dbus:1.5.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DFC34AF2-60BD-4D52-8704-B0A4E3B9F35E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:freedesktop:dbus:1.5.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AA8D645B-19A4-4AF5-A667-C95F90B8F282\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:freedesktop:dbus:1.5.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4E8E5358-8466-4D3A-8AE4-3EE55700140D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:freedesktop:dbus:1.5.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7B175C3A-44FC-4069-99F4-CFF78DAF6C60\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:freedesktop:dbus:1.5.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"36C6830D-92D2-49EC-BD13-BA7EE7720E61\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:freedesktop:dbus:1.5.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3E33E9B8-4543-46D0-837B-DCCAC25C47E7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:freedesktop:dbus:1.5.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"831CFD41-47B0-4920-B118-7AD2CAFBFA85\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:freedesktop:dbus:1.6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0A772FA8-668B-45AC-9813-0B5ADCE91DD6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:freedesktop:dbus:1.6.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E155EB75-8D98-4469-98CB-81A40ABF0D9C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:freedesktop:dbus:1.6.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A24ED739-0B39-4A70-B7E0-8A859759233D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:freedesktop:dbus:1.6.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F89DEA95-DFB8-4D75-BE65-A477972D143E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:freedesktop:dbus:1.6.14:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"76BCD0D9-4F06-46E7-8734-AAEE28DD1631\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:freedesktop:dbus:1.6.16:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C22CA4E4-458D-465A-8272-473055A608EB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:freedesktop:dbus:1.6.18:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8133A184-FC2E-41AC-B2C2-EFD819B011FC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:freedesktop:dbus:1.6.20:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2D5009D1-BDA4-4DFC-A629-07144BDAEC93\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:freedesktop:dbus:1.8.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9AB63C07-1022-4EEE-B419-4E0A80AE64A5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:freedesktop:dbus:1.8.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"68B161B9-7385-4C0B-AC4D-1145E1004B74\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:freedesktop:dbus:1.8.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6DD6AAFC-C18F-4AF5-B8D1-82F85F8421DC\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:mageia_project:mageia:3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F1911F9C-95A5-49DD-80F0-472BE92D7CDA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:mageia_project:mageia:4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EDB6C80D-ADCA-481E-B54B-3BEA3D7D3107\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:opensuse:opensuse:12.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DFBF430B-0832-44B0-AA0E-BA9E467F7668\"}]}]}],\"references\":[{\"url\":\"http://advisories.mageia.org/MGASA-2014-0294.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://lists.opensuse.org/opensuse-updates/2014-09/msg00049.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://openwall.com/lists/oss-security/2014/07/02/4\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://secunia.com/advisories/59611\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://secunia.com/advisories/59798\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://secunia.com/advisories/60236\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.debian.org/security/2014/dsa-2971\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2015:176\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://bugs.freedesktop.org/show_bug.cgi?id=79694\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://bugs.freedesktop.org/show_bug.cgi?id=80469\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://advisories.mageia.org/MGASA-2014-0294.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.opensuse.org/opensuse-updates/2014-09/msg00049.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://openwall.com/lists/oss-security/2014/07/02/4\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/59611\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/59798\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/60236\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.debian.org/security/2014/dsa-2971\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2015:176\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://bugs.freedesktop.org/show_bug.cgi?id=79694\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://bugs.freedesktop.org/show_bug.cgi?id=80469\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]}]}}"
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.