Vulnerability Details CVE-2011-2533
The configure script in D-Bus (aka DBus) 1.2.x before 1.2.28 allows local users to overwrite arbitrary files via a symlink attack on an unspecified file in /tmp/.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 7.1%
CVSS Severity
CVSS v2 Score 3.3
References
- http://cgit.freedesktop.org/dbus/dbus/tree/NEWS?h=dbus-1.2
- http://www.securitytracker.com/id?1025720
- https://exchange.xforce.ibmcloud.com/vulnerabilities/68173
- http://cgit.freedesktop.org/dbus/dbus/tree/NEWS?h=dbus-1.2
- http://www.securitytracker.com/id?1025720
- https://exchange.xforce.ibmcloud.com/vulnerabilities/68173
Products affected by CVE-2011-2533
-
cpe:2.3:a:freedesktop:dbus:1.2.1
-
cpe:2.3:a:freedesktop:dbus:1.2.10
-
cpe:2.3:a:freedesktop:dbus:1.2.12
-
cpe:2.3:a:freedesktop:dbus:1.2.14
-
cpe:2.3:a:freedesktop:dbus:1.2.16
-
cpe:2.3:a:freedesktop:dbus:1.2.18
-
cpe:2.3:a:freedesktop:dbus:1.2.20
-
cpe:2.3:a:freedesktop:dbus:1.2.22
-
cpe:2.3:a:freedesktop:dbus:1.2.24
-
cpe:2.3:a:freedesktop:dbus:1.2.26
-
cpe:2.3:a:freedesktop:dbus:1.2.3
-
cpe:2.3:a:freedesktop:dbus:1.2.4
-
cpe:2.3:a:freedesktop:dbus:1.2.6
-
cpe:2.3:a:freedesktop:dbus:1.2.8