CVE-2013-0292
published 2013-03-05CVE-2013-0292: The dbus_g_proxy_manager_filter function in dbus-gproxy in Dbus-glib before 0.100.1 does not properly verify the sender of NameOwnerChanged signals, which…
PriorityP335high7.2CVSS 2.0
AVLACLAuNCCICAC
EXPLOIT
EPSS
1.09%
61.2th percentile
The dbus_g_proxy_manager_filter function in dbus-gproxy in Dbus-glib before 0.100.1 does not properly verify the sender of NameOwnerChanged signals, which allows local users to gain privileges via a spoofed signal.
Affected
33 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | dbus-glib | < dbus-glib 0.100.1-1 (bookworm) | dbus-glib 0.100.1-1 (bookworm) |
| freedesktop | dbus-glib | <= 0.100 | — |
| freedesktop | dbus-glib | — | — |
| freedesktop | dbus-glib | — | — |
| freedesktop | dbus-glib | — | — |
| freedesktop | dbus-glib | — | — |
| freedesktop | dbus-glib | — | — |
| freedesktop | dbus-glib | — | — |
| freedesktop | dbus-glib | — | — |
| freedesktop | dbus-glib | — | — |
| freedesktop | dbus-glib | — | — |
| freedesktop | dbus-glib | — | — |
| freedesktop | dbus-glib | — | — |
| freedesktop | dbus-glib | — | — |
| freedesktop | dbus-glib | — | — |
| freedesktop | dbus-glib | — | — |
| freedesktop | dbus-glib | — | — |
| freedesktop | dbus-glib | >= 0 < 0.100.1-1 | 0.100.1-1 |
| freedesktop | dbus-glib | >= 0 < 0.100.1-1 | 0.100.1-1 |
| freedesktop | dbus-glib | >= 0 < 0.100.1-1 | 0.100.1-1 |
| freedesktop | dbus-glib | >= 0 < 0.100.1-1 | 0.100.1-1 |
| msrc | microsoft_word_2013_rt_service_pack_1 | — | — |
| msrc | microsoft_word_2013_service_pack_1 | — | — |
| msrc | microsoft_word_2016 | — | — |
| msrc | windows_10 | — | — |
CVSS provenance
nvdv2.07.2HIGHAV:L/AC:L/Au:N/C:C/I:C/A:C
osv7.2HIGH
vendor_debian7.2HIGH
vendor_redhat7.2HIGH
vendor_msrc3.6LOW
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-rw79-5p9f-842m: The dbus_g_proxy_manager_filter function in dbus-gproxy in Dbus-glib before 0
ghsa_unreviewed·2022-05-05
CVE-2013-0292 [HIGH] CWE-20 GHSA-rw79-5p9f-842m: The dbus_g_proxy_manager_filter function in dbus-gproxy in Dbus-glib before 0
The dbus_g_proxy_manager_filter function in dbus-gproxy in Dbus-glib before 0.100.1 does not properly verify the sender of NameOwnerChanged signals, which allows local users to gain privileges via a spoofed signal.
OSV
CVE-2013-0292: The dbus_g_proxy_manager_filter function in dbus-gproxy in Dbus-glib before 0
osv·2013-03-05·CVSS 7.2
CVE-2013-0292 [HIGH] CVE-2013-0292: The dbus_g_proxy_manager_filter function in dbus-gproxy in Dbus-glib before 0
The dbus_g_proxy_manager_filter function in dbus-gproxy in Dbus-glib before 0.100.1 does not properly verify the sender of NameOwnerChanged signals, which allows local users to gain privileges via a spoofed signal.
Microsoft
Windows PDF Remote Code Execution Vulnerability
vendor_msrc·2017-06-13·CVSS 3.6
CVE-2017-0292 [HIGH] Windows PDF Remote Code Execution Vulnerability
Windows PDF Remote Code Execution Vulnerability
Description: A remote code execution vulnerability exists in Microsoft Windows, Microsoft Word 2013 and Microsoft Word 2016 if a user opens a specially crafted PDF file. An attacker who successfully exploited the vulnerability could cause arbitrary code to execute in the context of the current user.
To exploit the vulnerability, an attacker must entice the user to open a specially crafted PDF file.
The update addresses the vulnerability by modifying how Windows and Microsoft Word parse PDF files.
Microsoft Windows PDF: Microsoft Windows PDF
Impact: Remote Code Execution
Exploit Status: Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation Less Likely;Older Software Release:Exploitation Less Likely;DOS:Temporary
Referenc
Ubuntu
DBus-GLib vulnerability
vendor_ubuntu·2013-02-27
CVE-2013-0292 DBus-GLib vulnerability
Title: DBus-GLib vulnerability
Summary: An attacker could send crafted input to applications using DBus-GLib and
possibly escalate privileges.
Sebastian Krahmer and Bastien Nocera discovered that DBus-GLib did not
properly validate the message sender when the "NameOwnerChanged" signal was
received. A local attacker could possibly use this issue to escalate their
privileges.
Instructions: After a standard system update you need to reboot your computer to make
all the necessary changes.
Red Hat
dbus-glib: Local privilege escalation due improper filtering of message sender when NameOwnerChanged signal received
vendor_redhat·2013-02-14·CVSS 7.2
CVE-2013-0292 [HIGH] dbus-glib: Local privilege escalation due improper filtering of message sender when NameOwnerChanged signal received
dbus-glib: Local privilege escalation due improper filtering of message sender when NameOwnerChanged signal received
The dbus_g_proxy_manager_filter function in dbus-gproxy in Dbus-glib before 0.100.1 does not properly verify the sender of NameOwnerChanged signals, which allows local users to gain privileges via a spoofed signal.
Debian
CVE-2013-0292: dbus-glib - The dbus_g_proxy_manager_filter function in dbus-gproxy in Dbus-glib before 0.10...
vendor_debian·2013·CVSS 7.2
CVE-2013-0292 [HIGH] CVE-2013-0292: dbus-glib - The dbus_g_proxy_manager_filter function in dbus-gproxy in Dbus-glib before 0.10...
The dbus_g_proxy_manager_filter function in dbus-gproxy in Dbus-glib before 0.100.1 does not properly verify the sender of NameOwnerChanged signals, which allows local users to gain privileges via a spoofed signal.
Scope: local
bookworm: resolved (fixed in 0.100.1-1)
bullseye: resolved (fixed in 0.100.1-1)
forky: resolved (fixed in 0.100.1-1)
sid: resolved (fixed in 0.100.1-1)
trixie: resolved (fixed in 0.100.1-1)
No detection rules found.
Bugzilla
CVE-2013-0292 dbus-glib: Local privilege escalation due improper filtering of message sender when NameOwnerChanged signal received [fedora-all]
bugzilla·2013-02-15·CVSS 7.2
CVE-2013-0292 [HIGH] CVE-2013-0292 dbus-glib: Local privilege escalation due improper filtering of message sender when NameOwnerChanged signal received [fedora-all]
CVE-2013-0292 dbus-glib: Local privilege escalation due improper filtering of message sender when NameOwnerChanged signal received [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of Fedora.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When creating a Bodhi update request, please use the bodhi submission link
noted in the next comment(s). This will include the bug IDs of this
tracking bug as well as the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and
Bugzilla
CVE-2013-0292 dbus-glib: Local privilege escalation due improper filtering of message sender when NameOwnerChanged signal received
bugzilla·2013-02-15·CVSS 7.2
CVE-2013-0292 [HIGH] CVE-2013-0292 dbus-glib: Local privilege escalation due improper filtering of message sender when NameOwnerChanged signal received
CVE-2013-0292 dbus-glib: Local privilege escalation due improper filtering of message sender when NameOwnerChanged signal received
A privilege escalation flaw was found in the way dbus-glib, the D-Bus add-on library to integrate the standard D-Bus library with the GLib thread abstraction and main loop, performed filtering of the message sender (message source subject), when the NameOwnerChanged signal was received. A local attacker could use this flaw to escalate their privileges.
Relevant upstream patch:
[1] http://cgit.freedesktop.org/dbus/dbus-glib/commit/?id=166978a09cf5edff4028e670b6074215a4c75eca
References:
[2] http://www.openwall.com/lists/oss-security/2013/02/15/10
Discussion:
Created dbus-glib tracking bugs for this issue
Affects: fedora-all [bug 911714]
---
dbus-glib ups
http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=911658http://cgit.freedesktop.org/dbus/dbus-glib/commit/?id=166978a09cf5edff4028e670b6074215a4c75ecahttp://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705http://osvdb.org/90302http://rhn.redhat.com/errata/RHSA-2013-0568.htmlhttp://secunia.com/advisories/52225http://secunia.com/advisories/52375http://secunia.com/advisories/52404http://www.exploit-db.com/exploits/33614http://www.mandriva.com/security/advisories?name=MDVSA-2013:071http://www.openwall.com/lists/oss-security/2013/02/15/10http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.htmlhttp://www.securityfocus.com/bid/57985http://www.ubuntu.com/usn/USN-1753-1https://bugs.freedesktop.org/show_bug.cgi?id=60916https://exchange.xforce.ibmcloud.com/vulnerabilities/82135http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=911658http://cgit.freedesktop.org/dbus/dbus-glib/commit/?id=166978a09cf5edff4028e670b6074215a4c75ecahttp://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705http://osvdb.org/90302http://rhn.redhat.com/errata/RHSA-2013-0568.htmlhttp://secunia.com/advisories/52225http://secunia.com/advisories/52375http://secunia.com/advisories/52404http://www.exploit-db.com/exploits/33614http://www.mandriva.com/security/advisories?name=MDVSA-2013:071http://www.openwall.com/lists/oss-security/2013/02/15/10http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.htmlhttp://www.securityfocus.com/bid/57985http://www.ubuntu.com/usn/USN-1753-1https://bugs.freedesktop.org/show_bug.cgi?id=60916https://exchange.xforce.ibmcloud.com/vulnerabilities/82135
2013-03-05
Published