CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:N/I:N/A:P
AI Score
Confidence
Low
EPSS
Percentile
36.4%
Alban Crequy discovered that dbus-daemon incorrectly sent AccessDenied
errors to the service instead of the client when enforcing permissions. A
local user can use this issue to possibly deny access to the service.
(CVE-2014-3477)
Alban Crequy discovered that dbus-daemon incorrectly handled certain file
descriptors. A local attacker could use this issue to cause services or
clients to disconnect, resulting in a denial of service. (CVE-2014-3532,
CVE-2014-3533)
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Ubuntu | 14.04 | noarch | dbus | < 1.6.18-0ubuntu4.1 | UNKNOWN |
Ubuntu | 14.04 | noarch | dbus-1-dbg | < 1.6.18-0ubuntu4.1 | UNKNOWN |
Ubuntu | 14.04 | noarch | dbus-x11 | < 1.6.18-0ubuntu4.1 | UNKNOWN |
Ubuntu | 14.04 | noarch | libdbus-1-3 | < 1.6.18-0ubuntu4.1 | UNKNOWN |
Ubuntu | 14.04 | noarch | libdbus-1-dev | < 1.6.18-0ubuntu4.1 | UNKNOWN |
Ubuntu | 13.10 | noarch | dbus | < 1.6.12-0ubuntu10.1 | UNKNOWN |
Ubuntu | 13.10 | noarch | dbus-1-dbg | < 1.6.12-0ubuntu10.1 | UNKNOWN |
Ubuntu | 13.10 | noarch | dbus-x11 | < 1.6.12-0ubuntu10.1 | UNKNOWN |
Ubuntu | 13.10 | noarch | libdbus-1-3 | < 1.6.12-0ubuntu10.1 | UNKNOWN |
Ubuntu | 13.10 | noarch | libdbus-1-dev | < 1.6.12-0ubuntu10.1 | UNKNOWN |