FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

dbus -- match_rule_equal() Weakness

Affected packages
dbus < 1.0.2

Details

VuXML ID 5b47b70d-8ba9-11db-81d5-00123ffe8333
Discovery 2006-12-12
Entry 2006-12-14

Secunia reports:

D-Bus have a weakness, which can be exploited by malicious, local users to cause a DoS (Denial of Service).

An error within the "match_rule_equal()" function can be exploited to disable the ability of other processes to receive messages by removing their matches from D-Bus.

References

CVE Name CVE-2006-6107
URL http://secunia.com/advisories/23373/
URL http://www.freedesktop.org/wiki/Software/dbus
URL https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=218055