Vulnerability in Todd_miller Sudo
CVE-2010-2956
Sudo 1.7.0 through 1.7.4p3, when a Runas group is configured, does not properly handle use of the -u option in conjunction with the -g option, which allows local users to gain privileges via a command line containing a "-u root" sequence.
EPSS: 0.001 (23.4th percentile) — read the EPSS interpretation.
Affected products
- Todd_miller Sudo — versions 1.7.3b1, 1.7.2, 1.7.2p1
- N/a — versions n/a
References
- ADV-2010-2312 (vdb-entry, x_refsource_VUPEN)
- secalert@redhat.com (x_refsource_CONFIRM)
- ADV-2010-2318 (vdb-entry, x_refsource_VUPEN)
- secalert@redhat.com (x_refsource_CONFIRM)
- MDVSA-2010:175 (vendor-advisory, x_refsource_MANDRIVA)
- ADV-2010-2320 (vdb-entry, x_refsource_VUPEN)
- 20101027 rPSA-2010-0075-1 sudo (mailing-list, x_refsource_BUGTRAQ)
- ADV-2010-2358 (vdb-entry, x_refsource_VUPEN)
- secalert@redhat.com (x_refsource_CONFIRM, Vendor Advisory)
- secalert@redhat.com (x_refsource_CONFIRM)