|Number of vulnerabilities||1|
Operating systems & Components / Operating system
This security bulletin contains one low risk vulnerability.
CWE-264 - Permissions, Privileges, and Access Controls
Exploit availability: NoDescription
Multiple vulnerabilities in D-Bus might allow an attacker to overwrite files with a fixed filename in arbitrary directories or conduct a symlink attack.
An attacker could possibly overwrite arbitrary files named “once” with content not controlled by the attacker.
A local attacker could perform a symlink attack against D-Bus’ test suite.Mitigation
Update affected software to version 1.10.18.Vulnerable software versions
Gentoo Linux: All versionsCPE2.3
Q & A
Can this vulnerability be exploited remotely?
Is there known malware, which exploits this vulnerability?