CVE-2012-3524


Severity : Medium
Published : 2012-09-18
Modified : 2014-05-05
Base Score : 6.9
Details : libdbus 1.5.x and earlier, when used in setuid or other privileged programs in X.org and possibly other products, allows local users to gain privileges and execute arbitrary code via the DBUS_SYSTEM_BUS_ADDRESS environment variable. NOTE: libdbus maintainers state that this is a vulnerability in the applications that do not cleanse environment variables, not in libdbus itself: "we do not support use of libdbus in setuid binaries that do not sanitize their environment before their first call into libdbus."
Product/Version : Pro 4.x  
CGE 4.x  
Mobilinux 4.x  
Pro 5.0  
CGE 5.x  
Mobilinux 5.x  
Mobilinux 5.0.24  
MVL 5 Atom  
Pro 5.0.24  
MVL 5 OMAP3  
MVL 5 OMAP3530  
Carrier Grade CGE 6.0  
 
 
 


CVE Vulnerabilities List CVE-2012
CVE-2012-6549CVE-2012-6546CVE-2012-6329CVE-2012-6151
CVE-2012-6139CVE-2012-5669CVE-2012-5668CVE-2012-5643
CVE-2012-5375CVE-2012-5374CVE-2012-5166CVE-2012-5134
CVE-2012-4565CVE-2012-4564CVE-2012-4530CVE-2012-4508
CVE-2012-4444CVE-2012-4424CVE-2012-4423CVE-2012-4412
CVE-2012-4398CVE-2012-4388CVE-2012-4296CVE-2012-4293
CVE-2012-4292CVE-2012-4291CVE-2012-4290CVE-2012-4289
CVE-2012-4288CVE-2012-4285CVE-2012-4244CVE-2012-4049
CVE-2012-4048CVE-2012-4025CVE-2012-4024CVE-2012-3817
CVE-2012-3548CVE-2012-3524CVE-2012-3511CVE-2012-3509
CVE-2012-3480CVE-2012-3450CVE-2012-3445CVE-2012-3425
CVE-2012-3417CVE-2012-3412CVE-2012-3410CVE-2012-3406
CVE-2012-3405CVE-2012-3404CVE-2012-3401CVE-2012-3400
CVE-2012-3375CVE-2012-2871CVE-2012-2807CVE-2012-2745
CVE-2012-2693CVE-2012-2663CVE-2012-2394CVE-2012-2393
CVE-2012-2392CVE-2012-2389CVE-2012-2373CVE-2012-2372
CVE-2012-2333CVE-2012-2319CVE-2012-2313CVE-2012-2141
CVE-2012-2136CVE-2012-2133CVE-2012-2131CVE-2012-2123
CVE-2012-2121CVE-2012-2111CVE-2012-2110CVE-2012-2100
CVE-2012-1667CVE-2012-1596CVE-2012-1595CVE-2012-1593
CVE-2012-1573CVE-2012-1569CVE-2012-1182CVE-2012-1179
CVE-2012-1173CVE-2012-1165CVE-2012-1164CVE-2012-1150
CVE-2012-1148CVE-2012-1147CVE-2012-1146CVE-2012-1144
CVE-2012-1143CVE-2012-1142CVE-2012-1141CVE-2012-1139
CVE-2012-1136CVE-2012-1135CVE-2012-1134CVE-2012-1133
CVE-2012-1132CVE-2012-1131CVE-2012-1130CVE-2012-1129
CVE-2012-1128CVE-2012-1127CVE-2012-1126CVE-2012-1097
CVE-2012-1088CVE-2012-0884CVE-2012-0879CVE-2012-0876
CVE-2012-0864CVE-2012-0862CVE-2012-0845CVE-2012-0841
CVE-2012-0840CVE-2012-0815CVE-2012-0814CVE-2012-0390
CVE-2012-0068CVE-2012-0067CVE-2012-0066CVE-2012-0061
CVE-2012-0060CVE-2012-0053CVE-2012-0045CVE-2012-0044
CVE-2012-0043CVE-2012-0042CVE-2012-0041CVE-2012-0038
CVE-2012-0031CVE-2012-0029CVE-2012-0028CVE-2012-0027