What is CVE-2015-5602?

CVE-2015-5602 is a vulnerability in Sudo_project Sudo, classified under CWE-264. Published 2015-11-17.

Is CVE-2015-5602 known to be exploited?

13 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Sudo_project Sudo

CVE-2015-5602

sudoedit in Sudo before 1.8.15 allows local users to gain privileges via a symlink attack on a file whose full path is defined using multiple wildcards in /etc/sudoers, as demonstrated by "/home/*/*/file.txt."

EPSS: 0.055 (90.4th percentile) — read the EPSS interpretation.

Affected products

Sudo_project Sudo
N/a — versions n/a

Weakness classification (CWE)

CWE-264

Public proof-of-concept exploits

References

cve@mitre.org (x_refsource_CONFIRM, Exploit, Issue Tracking)
cve@mitre.org (x_refsource_CONFIRM, Release Notes, Vendor Advisory)
1034392 (vdb-entry, x_refsource_SECTRACK)
DSA-3440 (vendor-advisory, x_refsource_DEBIAN)
GLSA-201606-13 (vendor-advisory, Third Party Advisory, x_refsource_GENTOO)
cve@mitre.org (x_refsource_CONFIRM)
FEDORA-2015-386863df8a (x_refsource_FEDORA, vendor-advisory, Third Party Advisory)
37710 (Exploit, exploit, Third Party Advisory, x_refsource_EXPLOIT-DB)
FEDORA-2015-6a267387c0 (x_refsource_FEDORA, vendor-advisory, Third Party Advisory)

Frequently asked questions

What is CVE-2015-5602?: CVE-2015-5602 is a vulnerability in Sudo_project Sudo, classified under CWE-264. Published 2015-11-17.
Is CVE-2015-5602 known to be exploited?: 13 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.