CVE-2012-3524


Severity : Medium
Published : 2012-09-18
Modified : 2014-05-05
Base Score : 6.9
Details : libdbus 1.5.x and earlier, when used in setuid or other privileged programs in X.org and possibly other products, allows local users to gain privileges and execute arbitrary code via the DBUS_SYSTEM_BUS_ADDRESS environment variable. NOTE: libdbus maintainers state that this is a vulnerability in the applications that do not cleanse environment variables, not in libdbus itself: "we do not support use of libdbus in setuid binaries that do not sanitize their environment before their first call into libdbus."
Product/Version : Pro 4.x  
CGE 4.x  
Mobilinux 4.x  
Pro 5.0  
CGE 5.x  
Mobilinux 5.x  
Mobilinux 5.0.24  
MVL 5 Atom  
Pro 5.0.24  
MVL 5 OMAP3  
MVL 5 OMAP3530  
Carrier Grade CGE 6.0  
 
 
 


CVE Vulnerabilities List CVE-2012
CVE-2012-6549CVE-2012-6546CVE-2012-6545CVE-2012-6329
CVE-2012-6151CVE-2012-6139CVE-2012-5669CVE-2012-5668
CVE-2012-5643CVE-2012-5375CVE-2012-5374CVE-2012-5166
CVE-2012-5134CVE-2012-4565CVE-2012-4564CVE-2012-4530
CVE-2012-4508CVE-2012-4444CVE-2012-4424CVE-2012-4423
CVE-2012-4412CVE-2012-4398CVE-2012-4388CVE-2012-4296
CVE-2012-4293CVE-2012-4292CVE-2012-4291CVE-2012-4290
CVE-2012-4289CVE-2012-4288CVE-2012-4285CVE-2012-4244
CVE-2012-4049CVE-2012-4048CVE-2012-4025CVE-2012-4024
CVE-2012-3817CVE-2012-3548CVE-2012-3524CVE-2012-3511
CVE-2012-3509CVE-2012-3480CVE-2012-3450CVE-2012-3445
CVE-2012-3425CVE-2012-3417CVE-2012-3412CVE-2012-3410
CVE-2012-3406CVE-2012-3405CVE-2012-3404CVE-2012-3401
CVE-2012-3400CVE-2012-3375CVE-2012-2871CVE-2012-2807
CVE-2012-2745CVE-2012-2693CVE-2012-2663CVE-2012-2394
CVE-2012-2393CVE-2012-2392CVE-2012-2389CVE-2012-2373
CVE-2012-2372CVE-2012-2333CVE-2012-2319CVE-2012-2313
CVE-2012-2141CVE-2012-2136CVE-2012-2133CVE-2012-2131
CVE-2012-2123CVE-2012-2121CVE-2012-2111CVE-2012-2110
CVE-2012-2100CVE-2012-1667CVE-2012-1596CVE-2012-1595
CVE-2012-1593CVE-2012-1573CVE-2012-1569CVE-2012-1182
CVE-2012-1179CVE-2012-1173CVE-2012-1165CVE-2012-1164
CVE-2012-1150CVE-2012-1148CVE-2012-1147CVE-2012-1146
CVE-2012-1144CVE-2012-1143CVE-2012-1142CVE-2012-1141
CVE-2012-1139CVE-2012-1136CVE-2012-1135CVE-2012-1134
CVE-2012-1133CVE-2012-1132CVE-2012-1131CVE-2012-1130
CVE-2012-1129CVE-2012-1128CVE-2012-1127CVE-2012-1126
CVE-2012-1097CVE-2012-1088CVE-2012-0884CVE-2012-0879
CVE-2012-0876CVE-2012-0864CVE-2012-0862CVE-2012-0845
CVE-2012-0841CVE-2012-0840CVE-2012-0815CVE-2012-0814
CVE-2012-0390CVE-2012-0068CVE-2012-0067CVE-2012-0066
CVE-2012-0061CVE-2012-0060CVE-2012-0053CVE-2012-0045
CVE-2012-0044CVE-2012-0043CVE-2012-0042CVE-2012-0041
CVE-2012-0038CVE-2012-0031CVE-2012-0029CVE-2012-0028
CVE-2012-0027