Main Vulnerability Database Exploits ID:8384 - Exploit for NULL pointer dereference in Linux D-Bus Message Broker - CVE-2022-31213

ID:8384 - Exploit for NULL pointer dereference in Linux D-Bus Message Broker - CVE-2022-31213

Published: September 21, 2022

Vulnerability identifier: #VU67528

Vulnerability risk: Low

CVE-ID: CVE-2022-31213

CWE-ID: CWE-476

Exploitation vector: Local access

Vulnerable software:
Linux D-Bus Message Broker

Link to public exploit:

https://sec-consult.com/vulnerability-lab/advisory/memory-corruption-vulnerabilities-dbus-broker/

Vulnerability description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a NULL pointer dereference error when handling a malformed XML config file. A local user can supply a specially crafted XML file to the service and perform a denial of service (DoS) attack.

Remediation

Install update from vendor's website.

ID:8384 - Exploit for NULL pointer dereference in Linux D-Bus Message Broker - CVE-2022-31213

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human