CVE-2012-3524


Severity : Medium
Published : 2012-09-18
Modified : 2013-12-05
Base Score : 6.9
Details : libdbus 1.5.x and earlier, when used in setuid or other privileged programs in X.org and possibly other products, allows local users to gain privileges and execute arbitrary code via the DBUS_SYSTEM_BUS_ADDRESS environment variable. NOTE: libdbus maintainers state that this is a vulnerability in the applications that do not cleanse environment variables, not in libdbus itself: "we do not support use of libdbus in setuid binaries that do not sanitize their environment before their first call into libdbus."
Product/Version : Pro 4.x  
CGE 4.x  
Mobilinux 4.x  
Pro 5.0  
CGE 5.x  
Mobilinux 5.x  
Mobilinux 5.0.24  
MVL 5 Atom  
Pro 5.0.24  
MVL 5 OMAP3  
MVL 5 OMAP3530  
Carrier Grade CGE 6.0  
 
 
 


CVE Vulnerabilities List CVE-2012
CVE-2012-6549CVE-2012-6329CVE-2012-6139CVE-2012-5669
CVE-2012-5668CVE-2012-5643CVE-2012-5375CVE-2012-5374
CVE-2012-5166CVE-2012-5134CVE-2012-4565CVE-2012-4564
CVE-2012-4530CVE-2012-4508CVE-2012-4444CVE-2012-4424
CVE-2012-4423CVE-2012-4412CVE-2012-4398CVE-2012-4388
CVE-2012-4296CVE-2012-4293CVE-2012-4292CVE-2012-4291
CVE-2012-4290CVE-2012-4289CVE-2012-4288CVE-2012-4285
CVE-2012-4244CVE-2012-4049CVE-2012-4048CVE-2012-4025
CVE-2012-4024CVE-2012-3817CVE-2012-3548CVE-2012-3524
CVE-2012-3511CVE-2012-3509CVE-2012-3480CVE-2012-3450
CVE-2012-3445CVE-2012-3425CVE-2012-3417CVE-2012-3412
CVE-2012-3410CVE-2012-3401CVE-2012-3400CVE-2012-3375
CVE-2012-2871CVE-2012-2807CVE-2012-2745CVE-2012-2693
CVE-2012-2394CVE-2012-2393CVE-2012-2392CVE-2012-2389
CVE-2012-2373CVE-2012-2372CVE-2012-2333CVE-2012-2319
CVE-2012-2313CVE-2012-2141CVE-2012-2136CVE-2012-2133
CVE-2012-2131CVE-2012-2123CVE-2012-2121CVE-2012-2111
CVE-2012-2110CVE-2012-2100CVE-2012-1667CVE-2012-1596
CVE-2012-1595CVE-2012-1593CVE-2012-1573CVE-2012-1182
CVE-2012-1179CVE-2012-1173CVE-2012-1165CVE-2012-1164
CVE-2012-1150CVE-2012-1148CVE-2012-1147CVE-2012-1146
CVE-2012-1144CVE-2012-1143CVE-2012-1142CVE-2012-1141
CVE-2012-1139CVE-2012-1136CVE-2012-1135CVE-2012-1134
CVE-2012-1133CVE-2012-1132CVE-2012-1131CVE-2012-1130
CVE-2012-1129CVE-2012-1128CVE-2012-1127CVE-2012-1126
CVE-2012-1097CVE-2012-0884CVE-2012-0879CVE-2012-0876
CVE-2012-0864CVE-2012-0862CVE-2012-0845CVE-2012-0841
CVE-2012-0840CVE-2012-0815CVE-2012-0814CVE-2012-0068
CVE-2012-0067CVE-2012-0066CVE-2012-0061CVE-2012-0060
CVE-2012-0053CVE-2012-0045CVE-2012-0044CVE-2012-0043
CVE-2012-0042CVE-2012-0041CVE-2012-0038CVE-2012-0031
CVE-2012-0029CVE-2012-0028CVE-2012-0027