Arbitrary Message Injection in D-BUS Socket

Arbitrary Message Injection in D-BUS Socket

CVE-2005-0201 · LOW Severity

AV:L/AC:L/AU:N/C:P/I:N/A:N

D-BUS (dbus) before 0.22 does not properly restrict access to a socket, if the socket address is known, which allows local users to listen or send arbitrary messages on another user's per-user session bus via that socket.

Learn more about our User Device Pen Test.