D-BUS (dbus) prior to 0.22 does not properly restrict access to a socket, if the socket address is known, which allows local users to listen or send arbitrary messages on another user's per-user session bus via that socket.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
d-bus d-bus |