CVE-2010-0426

Severity

69%

Complexity

34%

Confidentiality

165%

sudo 1.6.x before 1.6.9p21 and 1.7.x before 1.7.2p4, when a pseudo-command is enabled, permits a match between the name of the pseudo-command and the name of an executable file in an arbitrary directory, which allows local users to gain privileges via a crafted executable file, as demonstrated by a file named sudoedit in a user's home directory.

sudo 1.6.x before 1.6.9p21 and 1.7.x before 1.7.2p4, when a pseudo-command is enabled, permits a match between the name of the pseudo-command and the name of an executable file in an arbitrary directory, which allows local users to gain privileges via a crafted executable file, as demonstrated by a file named sudoedit in a user's home directory.

CVSS 2.0 Base Score 6.9. CVSS Attack Vector: local. CVSS Attack Complexity: medium. CVSS Vector: (AV:L/AC:M/Au:N/C:C/I:C/A:C).

Overview

Type

Todd Miller Sudo

First reported 14 years ago

2010-02-24 18:30:00

Last updated 6 years ago

2018-10-10 19:52:00

Affected Software

Todd Miller Sudo 1.6

1.6

Todd Miller Sudo 1.6.1

1.6.1

Todd Miller Sudo 1.6.2

1.6.2

Todd Miller Sudo 1.6.3

1.6.3

Todd Miller Sudo 1.6.3 p7

1.6.3_p7

Todd Miller Sudo 1.7.0

1.7.0

Todd Miller Sudo 1.7.1

1.7.1

Todd Miller Sudo 1.7.2

1.7.2

Todd Miller Sudo 1.7.2p1

1.7.2p1

Todd Miller Sudo 1.7.2p2

1.7.2p2

Todd Miller Sudo 1.7.2p3

1.7.2p3

References

ftp://ftp.sudo.ws/pub/sudo/sudo-1.6.9p21.patch.gz

Patch

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=570737

FEDORA-2010-6701

FEDORA-2010-6749

SUSE-SR:2010:006

38659

Vendor Advisory

38762

38795

38803

38915

39399

1023658

SSA:2010-110-01

http://sudo.ws/bugs/show_bug.cgi?id=389

http://sudo.ws/repos/sudo/rev/88f3181692fe

http://sudo.ws/repos/sudo/rev/f86e1b56d074

http://wiki.rpath.com/Advisories:rPSA-2010-0075

DSA-2006

GLSA-201003-01

http://www.linuxquestions.org/questions/linux-security-4/the-use-of-sudoedit-command-question-785442/

MDVSA-2010:049

20101027 rPSA-2010-0075-1 sudo

38362

Patch

http://www.sudo.ws/sudo/stable.html

Patch

USN-905-1

ADV-2010-0450

Vendor Advisory

ADV-2010-0949

oval:org.mitre.oval:def:10814

oval:org.mitre.oval:def:7238

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.