sudo 1.6.x prior to 1.6.9p21 and 1.7.x prior to 1.7.2p4, when a pseudo-command is enabled, permits a match between the name of the pseudo-command and the name of an executable file in an arbitrary directory, which allows local users to gain privileges via a crafted executable file, as demonstrated by a file named sudoedit in a user's home directory.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
todd miller sudo 1.6.9 p18 |
||
todd miller sudo 1.6.3 p6 |
||
todd miller sudo 1.6.8 p7 |
||
todd miller sudo 1.7.0 |
||
todd miller sudo 1.6.3 |
||
todd miller sudo 1.6.4 p2 |
||
todd miller sudo 1.6.1 |
||
todd miller sudo 1.6.8 p12 |
||
todd miller sudo 1.6.3 p5 |
||
todd miller sudo 1.7.1 |
||
todd miller sudo 1.7.2p2 |
||
todd miller sudo 1.7.2 |
||
todd miller sudo 1.6.2 |
||
todd miller sudo 1.6.4 p1 |
||
todd miller sudo 1.6.3 p2 |
||
todd miller sudo 1.6.3 p4 |
||
todd miller sudo 1.6.8 p9 |
||
todd miller sudo 1.6.5 p2 |
||
todd miller sudo 1.6.3 p3 |
||
todd miller sudo 1.7.2p1 |
||
todd miller sudo 1.7.2p3 |
||
todd miller sudo 1.6.8 p1 |
||
todd miller sudo 1.6.5 p1 |
||
todd miller sudo 1.6.9 p19 |
||
todd miller sudo 1.6.9 p17 |
||
todd miller sudo 1.6.3 p7 |
||
todd miller sudo 1.6 |
||
todd miller sudo 1.6.8 p5 |
||
todd miller sudo 1.6.8 p8 |
||
todd miller sudo 1.6.3 p1 |
||
todd miller sudo 1.6.8 p2 |
||
todd miller sudo 1.6.7 p5 |