CVE-2008-0595 (Fedora, Enterprise Linux Desktop Workstation, Mandrake Linux, Inter-Process Commu...)

CVE-2008-0595 (Fedora, Enterprise Linux Desktop Workstation, Mandrake Linux, Inter-Process Commu...)
BugsAlert Home > CVE-2008-0595 (Fedora, Enterprise Linux Desktop Workstation, Mandrake Linux, Inter-Process Commu...)




dbus-daemon in D-Bus before 1.0.3, and 1.1.x before 1.1.20, recognizes send_interface attributes in allow directives in the security policy only for fully qualified method calls, which allows local users to bypass intended access restrictions via a method call with a NULL interface. Original Source: http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-0595 Learn more about CVE-2008-0595 (Fedora, Enterprise Linux Desktop Workstation, Mandrake Linux, Inter-Process Commu...)


Tags: cve-2008-0595 fedora enterprise linux desktop workstation mandrake linux inter-process commu...

Related Items
Vuln: Apache HTTP Server Mod_Proxy Denial of Service Vulnerability
FrSIRT - Microsoft Windows DirectX Remote Code Execution (MS08-033)
Null Byte Local file Inclusion in FAR - PHP Project version:1.0
WORM_AUTORUN.AJO
Google re-directs and new programs won't run - help !
CVE-2008-2530 (quickupcms)
Debian: New xulrunner packages fix several vulnerabilities