Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2011-2200

Опубликовано: 22 июн. 2011
Источник: nvd
CVSS2: 4.6
EPSS Низкий

Описание

The _dbus_header_byteswap function in dbus-marshal-header.c in D-Bus (aka DBus) 1.2.x before 1.2.28, 1.4.x before 1.4.12, and 1.5.x before 1.5.4 does not properly handle a non-native byte order, which allows local users to cause a denial of service (connection loss), obtain potentially sensitive information, or conduct unspecified state-modification attacks via crafted messages.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:freedesktop:dbus:1.5.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:dbus:1.5.2:*:*:*:*:*:*:*
Конфигурация 2

Одно из

cpe:2.3:a:freedesktop:dbus:1.4.0:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:dbus:1.4.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:dbus:1.4.4:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:dbus:1.4.6:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:dbus:1.4.8:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:dbus:1.4.10:*:*:*:*:*:*:*
Конфигурация 3

Одно из

cpe:2.3:a:d-bus_project:d-bus:1.2.4.2:*:*:*:*:*:*:permissive
cpe:2.3:a:d-bus_project:d-bus:1.2.4.4:*:*:*:*:*:*:permissive
cpe:2.3:a:d-bus_project:d-bus:1.2.4.6:*:*:*:*:*:*:permissive
cpe:2.3:a:freedesktop:dbus:1.2.1:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:dbus:1.2.2:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:dbus:1.2.3:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:dbus:1.2.4:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:dbus:1.2.6:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:dbus:1.2.8:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:dbus:1.2.10:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:dbus:1.2.12:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:dbus:1.2.14:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:dbus:1.2.16:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:dbus:1.2.18:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:dbus:1.2.20:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:dbus:1.2.22:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:dbus:1.2.24:*:*:*:*:*:*:*
cpe:2.3:a:freedesktop:dbus:1.2.26:*:*:*:*:*:*:*

EPSS

Процентиль: 28%
0.00098
Низкий

4.6 Medium

CVSS2

Дефекты

CWE-20

Связанные уязвимости

ubuntu логотип

CVE-2011-2200

ubuntu
около 14 лет назад

The _dbus_header_byteswap function in dbus-marshal-header.c in D-Bus (aka DBus) 1.2.x before 1.2.28, 1.4.x before 1.4.12, and 1.5.x before 1.5.4 does not properly handle a non-native byte order, which allows local users to cause a denial of service (connection loss), obtain potentially sensitive information, or conduct unspecified state-modification attacks via crafted messages.

redhat логотип

CVE-2011-2200

redhat
около 14 лет назад

The _dbus_header_byteswap function in dbus-marshal-header.c in D-Bus (aka DBus) 1.2.x before 1.2.28, 1.4.x before 1.4.12, and 1.5.x before 1.5.4 does not properly handle a non-native byte order, which allows local users to cause a denial of service (connection loss), obtain potentially sensitive information, or conduct unspecified state-modification attacks via crafted messages.

debian логотип

CVE-2011-2200

debian
около 14 лет назад

The _dbus_header_byteswap function in dbus-marshal-header.c in D-Bus ( ...

github логотип

GHSA-8qh5-rr38-7xjm

github
около 3 лет назад

The _dbus_header_byteswap function in dbus-marshal-header.c in D-Bus (aka DBus) 1.2.x before 1.2.28, 1.4.x before 1.4.12, and 1.5.x before 1.5.4 does not properly handle a non-native byte order, which allows local users to cause a denial of service (connection loss), obtain potentially sensitive information, or conduct unspecified state-modification attacks via crafted messages.

oracle-oval логотип

ELSA-2011-1132

oracle-oval
почти 14 лет назад

ELSA-2011-1132: dbus security update (MODERATE)

EPSS

Процентиль: 28%
0.00098
Низкий

4.6 Medium

CVSS2

Дефекты

CWE-20