Input validation error in Freedesktop dbus
| Risk | Low |
| Patch available | YES |
| Number of vulnerabilities | 1 |
| CVE-ID | cve-2011-2200 |
| CWE-ID | CWE-20 |
| Exploitation vector | Local |
| Public exploit | N/A |
| Vulnerable software |
dbus Universal components / Libraries / Libraries used by multiple products |
| Vendor | Freedesktop.org |
Security Bulletin
This security bulletin contains one low risk vulnerability.
1) Input validation error
EUVDB-ID: #VU32842
Risk: Low
CVSSv4.0: 1.2 [CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: cve-2011-2200
CWE-ID:
CWE-20 - Improper input validation
Exploit availability: No
DescriptionThe vulnerability allows a local non-authenticated attacker to read and manipulate data.
The _dbus_header_byteswap function in dbus-marshal-header.c in D-Bus (aka DBus) 1.2.x before 1.2.28, 1.4.x before 1.4.12, and 1.5.x before 1.5.4 does not properly handle a non-native byte order, which allows local users to cause a denial of service (connection loss), obtain potentially sensitive information, or conduct unspecified state-modification attacks via crafted messages.
MitigationInstall update from vendor's website.
Vulnerable software versionsdbus: 1.2.1 - 1.5.2
CPE2.3- cpe:2.3:a:freedesktop_org:dbus:1.2.1:*:*:*:*:*:*:*
- cpe:2.3:a:freedesktop_org:dbus:1.2.3:*:*:*:*:*:*:*
- cpe:2.3:a:freedesktop_org:dbus:1.2.4:*:*:*:*:*:*:*
- cpe:2.3:a:freedesktop_org:dbus:1.2.6:*:*:*:*:*:*:*
- cpe:2.3:a:freedesktop_org:dbus:1.2.8:*:*:*:*:*:*:*
- cpe:2.3:a:freedesktop_org:dbus:1.2.10:*:*:*:*:*:*:*
- cpe:2.3:a:freedesktop_org:dbus:1.2.12:*:*:*:*:*:*:*
- cpe:2.3:a:freedesktop_org:dbus:1.2.14:*:*:*:*:*:*:*
- cpe:2.3:a:freedesktop_org:dbus:1.2.16:*:*:*:*:*:*:*
- cpe:2.3:a:freedesktop_org:dbus:1.2.18:*:*:*:*:*:*:*
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=629938
https://cgit.freedesktop.org/dbus/dbus/commit/?h=dbus-1.2&id=6519a1f77c61d753d4c97efd6e15630eb275336e
https://cgit.freedesktop.org/dbus/dbus/commit/?h=dbus-1.4&id=c3223ba6c401ba81df1305851312a47c485e6cd7
https://cgit.freedesktop.org/dbus/dbus/tree/NEWS?h=dbus-1.2
https://cgit.freedesktop.org/dbus/dbus/tree/NEWS?h=dbus-1.4
https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705
https://lists.freedesktop.org/archives/dbus/2007-March/007357.html
https://lists.freedesktop.org/archives/dbus/2011-May/014408.html
https://openwall.com/lists/oss-security/2011/06/12/1
https://openwall.com/lists/oss-security/2011/06/12/2
https://openwall.com/lists/oss-security/2011/06/13/12
https://secunia.com/advisories/44896
https://www.redhat.com/support/errata/RHSA-2011-1132.html
https://bugs.freedesktop.org/show_bug.cgi?id=38120
https://bugzilla.redhat.com/show_bug.cgi?id=712676
https://exchange.xforce.ibmcloud.com/vulnerabilities/67974
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
