Home > Vulnerability Database > CVE-2019-12749

Mend.io Vulnerability Database

CVE-2019-12749

Date: June 11, 2019

dbus before 1.10.28, 1.12.x before 1.12.16, and 1.13.x before 1.13.12, as used in DBusServer in Canonical Upstart in Ubuntu 14.04 (and in some, less common, uses of dbus-daemon), allows cookie spoofing because of symlink mishandling in the reference implementation of DBUS_COOKIE_SHA1 in the libdbus library. (This only affects the DBUS_COOKIE_SHA1 authentication mechanism.) A malicious client with write access to its own home directory could manipulate a ~/.dbus-keyrings symlink to cause a DBusServer with a different uid to read and write in unintended locations. In the worst case, this could result in the DBusServer reusing a cookie that is known to the malicious client, and treating that cookie as evidence that a subsequent client connection came from an attacker-chosen uid, allowing authentication bypass.

Language: C

Severity Score

7.1

Related Resources (25)

Url: https://security.alpinelinux.org/vuln/CVE-2019-12749

Url: https://access.redhat.com/errata/RHSA-2019:2870

Url: http://www.securityfocus.com/bid/108751

Url: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/V2CQF37O73VH2JDVX2ILX2KD2KLXLQOU/

Url: https://lists.debian.org/debian-lts-announce/2019/06/msg00005.html

Url: https://www.debian.org/security/2019/dsa-4462

Url: https://usn.ubuntu.com/4015-2/

Url: https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/V2CQF37O73VH2JDVX2ILX2KD2KLXLQOU/

Url: https://usn.ubuntu.com/4015-1/

Url: http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00026.html

Url: http://www.openwall.com/lists/oss-security/2019/06/11/2

Url: https://security.gentoo.org/glsa/201909-08

Url: https://seclists.org/bugtraq/2019/Jun/16

Url: http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00059.html

Url: https://security-tracker.debian.org/tracker/CVE-2019-12749

Url: http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00092.html

Url: https://www.openwall.com/lists/oss-security/2019/06/11/2

Url: https://access.redhat.com/errata/RHSA-2019:2868

Url: https://access.redhat.com/errata/RHSA-2019:3707

Url: https://access.redhat.com/security/cve/CVE-2019-12749

Url: https://people.canonical.com/~ubuntu-security/cve/CVE-2019-12749

Url: https://nvd.nist.gov/vuln/detail/CVE-2019-12749

Url: https://security.netapp.com/advisory/ntap-20241206-0010/

Url: https://access.redhat.com/errata/RHSA-2019:1726

Url: https://www.mend.io/vulnerability-database/CVE-2019-12749

Severity Score

7.1

Weakness Type (CWE)

Improper Authentication

CWE-287

Improper Link Resolution Before File Access ('Link Following')

CWE-59

CVSS v3.1

Base Score:	7.1
Attack Vector (AV):	LOCAL
Attack Complexity (AC):	LOW
Privileges Required (PR):	LOW
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	HIGH
Integrity (I):	HIGH
Availability (A):	NONE

CVSS v2

Base Score:	3.6
Access Vector (AV):	LOCAL
Access Complexity (AC):	LOW
Authentication (AU):	NONE
Confidentiality (C):	PARTIAL
Integrity (I):	PARTIAL
Availability (A):	NONE
Additional information:

Mend.io Vulnerability Database

We found results for “”

CVE-2019-12749

Date: June 11, 2019

Language: C

Severity Score

Related Resources (25)

Severity Score

Weakness Type (CWE)

CVSS v3.1

CVSS v2

Do you need more information?