VYPR
Unrated severityNVD Advisory· Published Feb 29, 2008· Updated Jun 16, 2026

CVE-2008-0595

CVE-2008-0595

Description

dbus-daemon in D-Bus before 1.0.3, and 1.1.x before 1.1.20, recognizes send_interface attributes in allow directives in the security policy only for fully qualified method calls, which allows local users to bypass intended access restrictions via a method call with a NULL interface.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

12
  • cpe:2.3:a:freedesktop:dbus:*:*:*:*:*:*:*:*
    Range: <1.0.3
  • cpe:2.3:o:fedoraproject:fedora:7:*:*:*:*:*:*:*
  • cpe:2.3:o:mandrakesoft:mandrake_linux:2007:*:*:*:*:*:*:*+ 5 more
    • cpe:2.3:o:mandrakesoft:mandrake_linux:2007:*:*:*:*:*:*:*
    • cpe:2.3:o:mandrakesoft:mandrake_linux:2007.0_x86_64:*:*:*:*:*:*:*
    • cpe:2.3:o:mandrakesoft:mandrake_linux:2007.1:*:*:*:*:*:*:*
    • cpe:2.3:o:mandrakesoft:mandrake_linux:2007.1:*:x86_64:*:*:*:*:*
    • cpe:2.3:o:mandrakesoft:mandrake_linux:2008.0:*:*:*:*:*:*:*
    • cpe:2.3:o:mandrakesoft:mandrake_linux:2008.0:*:x86_64:*:*:*:*:*
  • cpe:2.3:o:redhat:enterprise_linux:5.0:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:o:redhat:enterprise_linux:5.0:*:*:*:*:*:*:*
    • cpe:2.3:o:redhat:enterprise_linux:5:*:client_workstation:*:*:*:*:*
  • Range: <1.0.3, 1.1.x < 1.1.20

Patches

Vulnerability mechanics

References

26

News mentions

0

No linked articles in our index yet.

CVE-2008-0595 · VYPR