CVE-2010-0427

Severity

44%

Complexity

34%

Confidentiality

106%

sudo 1.6.x before 1.6.9p21, when the runas_default option is used, does not properly set group memberships, which allows local users to gain privileges via a sudo command.

CVSS 2.0 Base Score 4.4. CVSS Attack Vector: local. CVSS Attack Complexity: medium. CVSS Vector: (AV:L/AC:M/Au:N/C:P/I:P/A:P).

Overview

First reported 14 years ago

2010-02-25 19:30:00

Last updated 6 years ago

2018-10-10 19:52:00

Affected Software

Todd Miller Sudo 1.6

1.6

Todd Miller Sudo 1.6.1

1.6.1

Todd Miller Sudo 1.6.2

1.6.2

Todd Miller Sudo 1.6.3

1.6.3

Todd Miller Sudo 1.6.3 p7

1.6.3_p7

Todd Miller Sudo 1.6.5

1.6.5

Todd Miller Sudo 1.6.6

1.6.6

Todd Miller Sudo 1.6.7

1.6.7

Todd Miller Sudo 1.6.8

1.6.8

References

ftp://ftp.sudo.ws/pub/sudo/sudo-1.6.9p21.patch.gz

Patch

SUSE-SR:2010:006

38762

38795

38803

38915

1023658

http://sudo.ws/repos/sudo/rev/aa0b6c01c462

http://wiki.rpath.com/Advisories:rPSA-2010-0075

DSA-2006

GLSA-201003-01

http://www.gratisoft.us/bugzilla/attachment.cgi?id=255

Exploit

http://www.gratisoft.us/bugzilla/show_bug.cgi?id=349

[oss-security] 20100223 CVE assignment notification -- CVE-2010-0427 -- sudo fails to reset group permissions if runas_default set

[oss-security] 20100224 Re: CVE assignment notification -- CVE-2010-0427 -- sudo fails to reset group permissions if runas_default set

20101027 rPSA-2010-0075-1 sudo

http://www.sudo.ws/cgi-bin/cvsweb/sudo/set_perms.c.diff?r1=1.30.2.7&r2=1.30.2.8

USN-905-1

https://bugzilla.redhat.com/show_bug.cgi?id=567622

oval:org.mitre.oval:def:10946

oval:org.mitre.oval:def:7216

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.