Secunia Security Advisory - Daniel Reed has reported a vulnerability in D-BUS, which can be exploited by malicious, local users to hijack a session bus.
dfa316baf7332eb6296634ecac0eb273bb0f946e76dc3be77479e7319055671f
TITLE:
D-BUS Session Bus Hijack Vulnerability
SECUNIA ADVISORY ID:
SA14119
VERIFY ADVISORY:
http://secunia.com/advisories/14119/
CRITICAL:
Less critical
IMPACT:
Hijacking
WHERE:
Local system
SOFTWARE:
D-BUS 0.x
http://secunia.com/product/4599/
DESCRIPTION:
Daniel Reed has reported a vulnerability in D-BUS, which can be
exploited by malicious, local users to hijack a session bus.
The problem is that a malicious user can connect to another user's
session bus. This can be exploited using dbus-send by specifying the
bus address in the "DBUS_SESSION_BUS_ADDRESS" environment variable.
SOLUTION:
The vulnerability has been fixed in the CVS repository.
PROVIDED AND/OR DISCOVERED BY:
Daniel Reed
ORIGINAL ADVISORY:
https://bugs.freedesktop.org/show_bug.cgi?id=2436
----------------------------------------------------------------------
About:
This Advisory was delivered by Secunia as a free service to help
everybody keeping their systems up to date against the latest
vulnerabilities.
Subscribe:
http://secunia.com/secunia_security_advisories/
Definitions: (Criticality, Where etc.)
http://secunia.com/about_secunia_advisories/
Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.
----------------------------------------------------------------------