Vulnerabilities > Freedesktop > Dbus Glib > 0.73
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2013-03-05 | CVE-2013-0292 | Improper Input Validation vulnerability in Freedesktop Dbus-Glib The dbus_g_proxy_manager_filter function in dbus-gproxy in Dbus-glib before 0.100.1 does not properly verify the sender of NameOwnerChanged signals, which allows local users to gain privileges via a spoofed signal. | 7.2 |
2010-08-20 | CVE-2010-1172 | Permissions, Privileges, and Access Controls vulnerability in Freedesktop Dbus-Glib 0.73 DBus-GLib 0.73 disregards the access flag of exported GObject properties, which allows local users to bypass intended access restrictions and possibly cause a denial of service by modifying properties, as demonstrated by properties of the (1) DeviceKit-Power, (2) NetworkManager, and (3) ModemManager services. | 3.6 |