Index
Bugtraq
Pełna lista
Błędy
Sztuczki
Exploity
Dorks list
Tylko z CVE
Tylko z CWE
Bogus
Ranking
CVEMAP
Świeża lista CVE
Producenci
Produkty
Słownik CWE
Sprawdź nr. CVE
Sprawdź nr. CWE
Szukaj
W Bugtraq
W bazie CVE
Po autorze
Po nr. CVE
Po nr. CWE
Po producencie
Po produkcie
RSS
Bugtraq
CVEMAP
CVE Produkty
Tylko Błędy
Tylko Exploity
Tylko Dorks
Więcej
cIFrex
Facebook
Twitter
Donate
O bazie
Lang
Polish
English
Submit
Podatności dla
'Libdbus'
2012-09-18
CVE-2012-3524
CWE-264
libdbus 1.5.x and earlier, when used in setuid or other privileged programs in X.org and possibly other products, allows local users to gain privileges and execute arbitrary code via the DBUS_SYSTEM_BUS_ADDRESS environment variable. NOTE: libdbus maintainers state that this is a vulnerability in the applications that do not cleanse environment variables, not in libdbus itself: "we do not support use of libdbus in setuid binaries that do not sanitize their environment before their first call into libdbus."
>>>
Vendor:
Freedesktop
23
Produkty
Policykit
DBUS
Dbus1.0
Dbus1.1.0
Scratchbox2
Xdg-utils
Udisks
Dbus-glib
Telepathy gabble
Colord
Libdbus
Spice-gtk
Poppler
Polkit
Virglrenderer
Systemd
Libpoppler
Accountsservice
Libice
Libbsd
Gst-plugins-bad
Libinput
Freetype demo programs
Copyright
2024
, cxsecurity.com
Back to Top