CVE-2008-0595

dbus-daemon in D-Bus before 1.0.3, and 1.1.x before 1.1.20, recognizes send_interface attributes in allow directives in the security policy only for fully qualified method calls, which allows local users to bypass intended access restrictions via a method call with a NULL interface.

CVSS v2.0 4.6 MEDIUM

4.6^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:L/AC:L/Au:N/C:P/I:P/A:P

Exploitability : 3.9 / Impact : 6.4

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://lists.freedesktop.org/archives/dbus/2008-February/009401.html	Patch Third Party Advisory
http://www.j5live.com/2008/02/27/announce-d-bus-1120-conisten-water-released/	Third Party Advisory
http://www.mandriva.com/security/advisories?name=MDVSA-2008:054	Broken Link
http://www.redhat.com/support/errata/RHSA-2008-0159.html	Third Party Advisory
http://www.securityfocus.com/bid/28023	Patch Third Party Advisory VDB Entry
http://securitytracker.com/id?1019512	Third Party Advisory VDB Entry
http://secunia.com/advisories/29148	Broken Link
http://secunia.com/advisories/29160	Broken Link
http://secunia.com/advisories/29171	Broken Link
https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00893.html	Third Party Advisory
https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00911.html	Third Party Advisory
http://secunia.com/advisories/29173	Broken Link
http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0099	Third Party Advisory
https://issues.rpath.com/browse/RPL-2282	Third Party Advisory
http://secunia.com/advisories/29281	Broken Link
http://lists.opensuse.org/opensuse-security-announce/2008-03/msg00004.html	Third Party Advisory
http://secunia.com/advisories/29323	Broken Link
http://wiki.rpath.com/Advisories:rPSA-2008-0099	Third Party Advisory
http://www.ubuntu.com/usn/usn-653-1	Third Party Advisory
http://secunia.com/advisories/32281	Broken Link
http://secunia.com/advisories/30869	Broken Link
http://www.debian.org/security/2008/dsa-1599	Third Party Advisory
http://www.vupen.com/english/advisories/2008/0694	Broken Link
http://lists.opensuse.org/opensuse-updates/2012-10/msg00094.html	Third Party Advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9353	Tool Signature
http://www.securityfocus.com/archive/1/489280/100/0/threaded	Third Party Advisory VDB Entry

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:fedoraproject:fedora:7:::::::*
	cpe:2.3:o:mandrakesoft:mandrake_linux:2007:::::::*
	cpe:2.3:o:mandrakesoft:mandrake_linux:2007.0_x86_64:::::::*
	cpe:2.3:o:mandrakesoft:mandrake_linux:2007.1:::::::*
	cpe:2.3:o:mandrakesoft:mandrake_linux:2007.1::x86-64:::::
	cpe:2.3:o:mandrakesoft:mandrake_linux:2008.0:::::::*
	cpe:2.3:o:mandrakesoft:mandrake_linux:2008.0::x86-64:::::
	cpe:2.3:o:redhat:enterprise_linux:5::client_workstation:::::
	cpe:2.3:o:redhat:enterprise_linux:5.0:::::::*

Configuration 2 (hide)

OR	cpe:2.3:a:freedesktop:dbus::::::::
	cpe:2.3:a:freedesktop:dbus::::::::

Information

Published : 2008-02-29 11:44

Updated : 2022-02-07 10:24

NVD link : CVE-2008-0595

Mitre link : CVE-2008-0595

JSON object : View

CWE

CWE-863

Incorrect Authorization

Products Affected

mandrakesoft

mandrake_linux

redhat

enterprise_linux

freedesktop

dbus

fedoraproject

fedora

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://lists.freedesktop.org/archives/dbus/2008-February/009401.html", "name": "[dbus] 20080227 [ANNOUNCE] CVE-2008-0595 D-Bus Security Releases - D-Bus 1.0.3 and D-Bus 1.1.20", "tags": ["Patch", "Third Party Advisory"], "refsource": "MLIST"}, {"url": "http://www.j5live.com/2008/02/27/announce-d-bus-1120-conisten-water-released/", "name": "http://www.j5live.com/2008/02/27/announce-d-bus-1120-conisten-water-released/", "tags": ["Third Party Advisory"], "refsource": "CONFIRM"}, {"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2008:054", "name": "MDVSA-2008:054", "tags": ["Broken Link"], "refsource": "MANDRIVA"}, {"url": "http://www.redhat.com/support/errata/RHSA-2008-0159.html", "name": "RHSA-2008:0159", "tags": ["Third Party Advisory"], "refsource": "REDHAT"}, {"url": "http://www.securityfocus.com/bid/28023", "name": "28023", "tags": ["Patch", "Third Party Advisory", "VDB Entry"], "refsource": "BID"}, {"url": "http://securitytracker.com/id?1019512", "name": "1019512", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "SECTRACK"}, {"url": "http://secunia.com/advisories/29148", "name": "29148", "tags": ["Broken Link"], "refsource": "SECUNIA"}, {"url": "http://secunia.com/advisories/29160", "name": "29160", "tags": ["Broken Link"], "refsource": "SECUNIA"}, {"url": "http://secunia.com/advisories/29171", "name": "29171", "tags": ["Broken Link"], "refsource": "SECUNIA"}, {"url": "https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00893.html", "name": "FEDORA-2008-2043", "tags": ["Third Party Advisory"], "refsource": "FEDORA"}, {"url": "https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00911.html", "name": "FEDORA-2008-2070", "tags": ["Third Party Advisory"], "refsource": "FEDORA"}, {"url": "http://secunia.com/advisories/29173", "name": "29173", "tags": ["Broken Link"], "refsource": "SECUNIA"}, {"url": "http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0099", "name": "http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0099", "tags": ["Third Party Advisory"], "refsource": "CONFIRM"}, {"url": "https://issues.rpath.com/browse/RPL-2282", "name": "https://issues.rpath.com/browse/RPL-2282", "tags": ["Third Party Advisory"], "refsource": "CONFIRM"}, {"url": "http://secunia.com/advisories/29281", "name": "29281", "tags": ["Broken Link"], "refsource": "SECUNIA"}, {"url": "http://lists.opensuse.org/opensuse-security-announce/2008-03/msg00004.html", "name": "SUSE-SR:2008:006", "tags": ["Third Party Advisory"], "refsource": "SUSE"}, {"url": "http://secunia.com/advisories/29323", "name": "29323", "tags": ["Broken Link"], "refsource": "SECUNIA"}, {"url": "http://wiki.rpath.com/Advisories:rPSA-2008-0099", "name": "http://wiki.rpath.com/Advisories:rPSA-2008-0099", "tags": ["Third Party Advisory"], "refsource": "CONFIRM"}, {"url": "http://www.ubuntu.com/usn/usn-653-1", "name": "USN-653-1", "tags": ["Third Party Advisory"], "refsource": "UBUNTU"}, {"url": "http://secunia.com/advisories/32281", "name": "32281", "tags": ["Broken Link"], "refsource": "SECUNIA"}, {"url": "http://secunia.com/advisories/30869", "name": "30869", "tags": ["Broken Link"], "refsource": "SECUNIA"}, {"url": "http://www.debian.org/security/2008/dsa-1599", "name": "DSA-1599", "tags": ["Third Party Advisory"], "refsource": "DEBIAN"}, {"url": "http://www.vupen.com/english/advisories/2008/0694", "name": "ADV-2008-0694", "tags": ["Broken Link"], "refsource": "VUPEN"}, {"url": "http://lists.opensuse.org/opensuse-updates/2012-10/msg00094.html", "name": "openSUSE-SU-2012:1418", "tags": ["Third Party Advisory"], "refsource": "SUSE"}, {"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9353", "name": "oval:org.mitre.oval:def:9353", "tags": ["Tool Signature"], "refsource": "OVAL"}, {"url": "http://www.securityfocus.com/archive/1/489280/100/0/threaded", "name": "20080307 rPSA-2008-0099-1 dbus dbus-glib dbus-qt dbus-x11", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "BUGTRAQ"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "dbus-daemon in D-Bus before 1.0.3, and 1.1.x before 1.1.20, recognizes send_interface attributes in allow directives in the security policy only for fully qualified method calls, which allows local users to bypass intended access restrictions via a method call with a NULL interface."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "CWE-863"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2008-0595", "ASSIGNER": "secalert@redhat.com"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 4.6, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "severity": "MEDIUM", "impactScore": 6.4, "obtainAllPrivilege": false, "exploitabilityScore": 3.9, "obtainUserPrivilege": true, "obtainOtherPrivilege": false, "userInteractionRequired": false}}, "publishedDate": "2008-02-29T19:44Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:o:fedoraproject:fedora:7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:mandrakesoft:mandrake_linux:2007:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:mandrakesoft:mandrake_linux:2007.0_x86_64:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:mandrakesoft:mandrake_linux:2007.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:mandrakesoft:mandrake_linux:2007.1:*:x86-64:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:mandrakesoft:mandrake_linux:2008.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:mandrakesoft:mandrake_linux:2008.0:*:x86-64:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux:5:*:client_workstation:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux:5.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}, {"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:freedesktop:dbus:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndExcluding": "1.0.3"}, {"cpe23Uri": "cpe:2.3:a:freedesktop:dbus:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndExcluding": "1.1.20", "versionStartIncluding": "1.1.0"}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2022-02-07T18:24Z"}

4.6 /10