CVE-2004-1689

Severity

21%

Complexity

39%

Confidentiality

48%

sudoedit (aka sudo -e) in sudo 1.6.8 opens a temporary file with root privileges, which allows local users to read arbitrary files via a symlink attack on the temporary file before quitting sudoedit.

sudoedit (aka sudo -e) in sudo 1.6.8 opens a temporary file with root privileges, which allows local users to read arbitrary files via a symlink attack on the temporary file before quitting sudoedit.

CVSS 2.0 Base Score 2.1. CVSS Attack Vector: local. CVSS Attack Complexity: low. CVSS Vector: (AV:L/AC:L/Au:N/C:P/I:N/A:N).

Overview

First reported 20 years ago

2004-09-16 04:00:00

Last updated 7 years ago

2017-07-11 01:31:00

Affected Software

Todd Miller Sudo 1.6.8

1.6.8

References

20040916 [sudo-announce] Sudo version 1.6.8p1 now available (fwd)

http://packetstormsecurity.nl/0409-exploits/sudoedit.txt

Patch, Vendor Advisory

12596

Patch, Vendor Advisory

O-219

Patch, Vendor Advisory

VU#424358

Patch, Third Party Advisory, US Government Resource

10023

Patch, Vendor Advisory

11204

Exploit, Patch, Vendor Advisory

http://www.sudo.ws/sudo/alerts/sudoedit.html

Patch, Vendor Advisory

sudo-sudoedit-view-files(17424)

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.