FreeBSD : dbus -- match_rule_equal() Weakness (5b47b70d-8ba9-11db-81d5-00123ffe8333)

This script is Copyright (C) 2006-2013 Tenable Network Security, Inc.


Synopsis :

The remote FreeBSD host is missing a security-related update.

Description :

Secunia reports :

D-Bus have a weakness, which can be exploited by malicious, local
users to cause a DoS (Denial of Service).

An error within the 'match_rule_equal()' function can be exploited to
disable the ability of other processes to receive messages by removing
their matches from D-Bus.

See also :

http://www.freedesktop.org/wiki/Software/dbus
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=218055
http://www.nessus.org/u?31fda2a8

Solution :

Update the affected package.

Risk factor :

Low / CVSS Base Score : 1.7
(CVSS2#AV:L/AC:L/Au:S/C:N/I:N/A:P)

Family: FreeBSD Local Security Checks

Nessus Plugin ID: 23871 (freebsd_pkg_5b47b70d8ba911db81d500123ffe8333.nasl)

Bugtraq ID:

CVE ID: CVE-2006-6107

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now