sudoedit (aka sudo -e) in sudo 1.6.8 opens a temporary file with root privileges, which allows local users to read arbitrary files via a symlink attack on the temporary file before quitting sudoedit.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
todd miller sudo 1.6.8 |