Linux DBus-GLib / NetworkManager / ModemManager privilege escalation
Published:		30.05.2011
Source:		BUGTRAQ
SecurityVulns ID:		11699
Type:		library
Level:		5/10
Description:		Access flags for exported object are not checked.

Affected:		DBUS : libdbus-glib 1.84
CVE:		CVE-2010-1172 (DBus-GLib 0.73 disregards the access flag of exported GObject properties, which allows local users to bypass intended access restrictions and possibly cause a denial of service by modifying properties, as demonstrated by properties of the (1) DeviceKit-Power, (2) NetworkManager, and (3) ModemManager services.)

Original document		UBUNTU, [USN-1138-2] NetworkManager and ModemManager update (30.05.2011)
		UBUNTU, [USN-1138-1] DBus-GLib vulnerability (30.05.2011)

Discuss:

Read or add your comments to this news (0 comments)