First published: Tue Jun 28 2005(Updated: )
D-BUS (dbus) before 0.22 does not properly restrict access to a socket, if the socket address is known, which allows local users to listen or send arbitrary messages on another user's per-user session bus via that socket.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
D-bus D-bus | <=0.22 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.