CVE-2014-3533

  1. Reconshell
  2. Vulnerabilities (CVE)
  3. CVE-2014-3533
dbus 1.3.0 before 1.6.22 and 1.8.x before 1.8.6 allows local users to cause a denial of service (disconnect) via a certain sequence of crafted messages that cause the dbus-daemon to forward a message containing an invalid file descriptor.

2.1 /10

CVSS v2.0 : LOW

V2 Legend

Vector : AV:L/AC:L/Au:N/C:N/I:N/A:P

Exploitability : 3.9 / Impact : 2.9

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

References
Link Resource
http://secunia.com/advisories/59611
http://www.debian.org/security/2014/dsa-2971
https://bugs.freedesktop.org/show_bug.cgi?id=80469 Vendor Advisory
http://openwall.com/lists/oss-security/2014/07/02/4
https://bugs.freedesktop.org/show_bug.cgi?id=79694
http://secunia.com/advisories/59798
http://secunia.com/advisories/60236
http://lists.opensuse.org/opensuse-updates/2014-09/msg00049.html
http://www.mandriva.com/security/advisories?name=MDVSA-2015:176
http://advisories.mageia.org/MGASA-2014-0294.html
http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html
Advertisement

NeevaHost hosting service
Configurations

Configuration 1 (hide)

cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*

Configuration 2 (hide)

OR cpe:2.3:a:d-bus_project:d-bus:1.3.0:*:*:*:*:*:*:*
cpe:2.3:a:d-bus_project:d-bus:1.4.16:*:*:*:*:*:*:*
cpe:2.3:a:d-bus_project:d-bus:1.4.18:*:*:*:*:*:*:*
cpe:2.3:a:d-bus_project:d-bus:1.4.8:*:*:*:*:*:*:*
cpe:2.3:a:d-bus_project:d-bus:1.5.0:*:*:*:*:*:*:*
cpe:2.3:a:d-bus_project:d-bus:1.5.10:*:*:*:*:*:*:*
cpe:2.3:a:d-bus_project:d-bus:1.6.10:*:*:*:*:*:*:*
cpe:2.3:a:d-bus_project:d-bus:1.6.12:*:*:*:*:*:*:*
cpe:2.3:a:d-bus_project:d-bus:1.8.2:*:*:*:*:*:*:*
cpe:2.3:a:d-bus_project:d-bus:1.8.0:*:*:*:*:*:*:*
cpe:2.3:a:d-bus_project:d-bus:1.4.1:*:*:*:*:*:*:*
cpe:2.3:a:d-bus_project:d-bus:1.6.0:*:*:*:*:*:*:*
cpe:2.3:a:d-bus_project:d-bus:1.4.22:*:*:*:*:*:*:*
cpe:2.3:a:d-bus_project:d-bus:1.3.1:*:*:*:*:*:*:*
cpe:2.3:a:d-bus_project:d-bus:1.5.6:*:*:*:*:*:*:*
cpe:2.3:a:d-bus_project:d-bus:1.6.14:*:*:*:*:*:*:*
cpe:2.3:a:d-bus_project:d-bus:1.4.14:*:*:*:*:*:*:*
cpe:2.3:a:d-bus_project:d-bus:1.5.8:*:*:*:*:*:*:*
cpe:2.3:a:d-bus_project:d-bus:1.6.18:*:*:*:*:*:*:*
cpe:2.3:a:d-bus_project:d-bus:1.4.0:*:*:*:*:*:*:*
cpe:2.3:a:d-bus_project:d-bus:1.5.4:*:*:*:*:*:*:*
cpe:2.3:a:d-bus_project:d-bus:1.4.24:*:*:*:*:*:*:*
cpe:2.3:a:d-bus_project:d-bus:1.4.12:*:*:*:*:*:*:*
cpe:2.3:a:d-bus_project:d-bus:1.6.20:*:*:*:*:*:*:*
cpe:2.3:a:d-bus_project:d-bus:1.6.16:*:*:*:*:*:*:*
cpe:2.3:a:d-bus_project:d-bus:1.4.20:*:*:*:*:*:*:*
cpe:2.3:a:d-bus_project:d-bus:1.4.6:*:*:*:*:*:*:*
cpe:2.3:a:d-bus_project:d-bus:1.5.2:*:*:*:*:*:*:*
cpe:2.3:a:d-bus_project:d-bus:1.4.26:*:*:*:*:*:*:*
cpe:2.3:a:d-bus_project:d-bus:1.4.10:*:*:*:*:*:*:*
cpe:2.3:a:d-bus_project:d-bus:1.4.4:*:*:*:*:*:*:*
cpe:2.3:a:d-bus_project:d-bus:1.5.12:*:*:*:*:*:*:*
cpe:2.3:a:d-bus_project:d-bus:1.6.2:*:*:*:*:*:*:*
cpe:2.3:a:d-bus_project:d-bus:1.8.4:*:*:*:*:*:*:*

Configuration 3 (hide)

OR cpe:2.3:o:mageia_project:mageia:3:*:*:*:*:*:*:*
cpe:2.3:o:mageia_project:mageia:4:*:*:*:*:*:*:*

Configuration 4 (hide)

cpe:2.3:o:opensuse:opensuse:12.3:*:*:*:*:*:*:*
Information

Published : 2014-07-19 12:55

Updated : 2018-10-30 09:27

NVD link : CVE-2014-3533

Mitre link : CVE-2014-3533

JSON object : View

CWE
CWE-20

Improper Input Validation

Advertisement

dedicated server usa
Products Affected

debian

  • debian_linux

d-bus_project

  • d-bus

opensuse

  • opensuse

mageia_project

  • mageia