D-Bus Policy Flaw Lets Remote Users Execute Restricted Method Calls
|
|
SecurityTracker Alert ID: 1019512
|
|
SecurityTracker URL: http://securitytracker.com/id?1019512
|
|
CVE Reference: CVE-2008-0595
(Links to External Site)
|
Date: Feb 28 2008
|
Impact: Execution of arbitrary code via network, User access via network
|
Fix Available: Yes
Vendor Confirmed: Yes
|
Version(s): prior to 1.1.20
|
Description: A vulnerability was reported in D-Bus. A remote user can execute certain method calls.
The <allow send_interface= some.interface.WithMethods /> policy statement allows a remote user to send a message without an interface
to bypass policy deny rules. A remote user can connect to the dbus-daemon to execute restricted method calls.
Havoc Pennington
reported this vulnerability.
|
Impact: A remote user can execute restricted method calls on the target system.
|
Solution: The vendor has issued a fixed version (1.1.20).
|
Vendor URL: www.freedesktop.org/wiki/Software/dbus (Links to External Site)
|
Cause: Access control error
|
Underlying OS: Linux (Any), UNIX (Any)
|
|
Message History:
This archive entry has one or more follow-up message(s) listed below.
|
Source Message Contents
|
Date: Wed, 27 Feb 2008 21:00:51 -0500
Subject: D-Bus
|
http://www.j5live.com/
Fixed CVE-2008-0595 - security policy of the type <allow send_interface=
“some.interface.WithMethods“/> work as an implicit allow for messages sent without an
interface bypassing the default deny rules and potentially allowing restricted methods
exported on the bus to be executed by unauthorized users.
|
|
