CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
EPSS
Percentile
5.1%
D-BUS (dbus) before 0.22 does not properly restrict access to a socket, if
the socket address is known, which allows local users to listen or send
arbitrary messages on another user’s per-user session bus via that socket.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 6.06 | noarch | dbus | < 0.60-6ubuntu8.1 | UNKNOWN |
ubuntu | 6.10 | noarch | dbus | < 0.93-0ubuntu3.1 | UNKNOWN |
ubuntu | 7.04 | noarch | dbus | < 1.0.2-1ubuntu3 | UNKNOWN |
ubuntu | 6.10 | noarch | dbus-glib | < 0.71-1ubuntu1 | UNKNOWN |
ubuntu | 7.04 | noarch | dbus-glib | < 0.71-1ubuntu1 | UNKNOWN |
ubuntu | 6.10 | noarch | dbus-python | < 0.71-2ubuntu1 | UNKNOWN |
ubuntu | 7.04 | noarch | dbus-python | < 0.71-2ubuntu1 | UNKNOWN |
ubuntu | 6.10 | noarch | dbus-qt3 | < 0.62.git.20060814-1 | UNKNOWN |
ubuntu | 7.04 | noarch | dbus-qt3 | < 0.62.git.20060814-1 | UNKNOWN |
ubuntu | 6.10 | noarch | dbus-sharp | < 0.63.git.20060719-2ubuntu1 | UNKNOWN |