[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

248364

 
 

909

 
 

195388

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2014-3639Date: (C)2014-09-23   (M)2024-01-04


The dbus-daemon in D-Bus before 1.6.24 and 1.8.x before 1.8.8 does not properly close old connections, which allows local users to cause a denial of service (incomplete connection consumption and prevention of new connections) via a large number of incomplete connections.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 2.1
Exploit Score: 3.9
Impact Score: 2.9
 
CVSS V2 Metrics:
Access Vector: LOCAL
Access Complexity: LOW
Authentication: NONE
Confidentiality: NONE
Integrity: NONE
Availability: PARTIAL
  
Reference:
SECTRACK-1030864
SECUNIA-61378
SECUNIA-61431
DSA-3026
MDVSA-2015:176
SUSE-SU-2014:1146
USN-2352-1
http://www.openwall.com/lists/oss-security/2014/09/16/9
http://advisories.mageia.org/MGASA-2014-0395.html
https://bugs.freedesktop.org/show_bug.cgi?id=80919
openSUSE-SU-2014:1239

CWE    1
CWE-399
OVAL    10
oval:org.secpod.oval:def:108442
oval:org.secpod.oval:def:108398
oval:org.secpod.oval:def:108235
oval:org.secpod.oval:def:601777
...

© SecPod Technologies