CVE-2010-1163

Related Files

Gentoo Linux Security Advisory 201006-9

Posted Jun 2, 2010

Authored by Gentoo | Site security.gentoo.org

Gentoo Linux Security Advisory 201006-9 - A flaw in sudo's -e option may allow local attackers to execute arbitrary commands. The command matching functionality does not properly handle when a file in the current working directory has the same name as a pseudo-command in the sudoers file and the PATH contains an entry for a period. Versions less than 1.7.2_p6 are affected.

tags | advisory, arbitrary, local

systems | linux, gentoo

advisories | CVE-2010-1163

SHA-256 | 951620b4df8257d00f282854c7cf5205bea46b3d367d82f5540205ad3cad307d

Download | Favorite | View

Mandriva Linux Security Advisory 2010-078

Posted Apr 28, 2010

Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2010-078 - The command matching functionality in sudo 1.6.8 through 1.7.2p5 does not properly handle when a file in the current working directory has the same name as a pseudo-command in the sudoers file and the PATH contains an entry for ., which allows local users to execute arbitrary commands via a Trojan horse executable, as demonstrated using sudoedit, a different vulnerability than CVE-2010-0426. Packages for 2008.0 are provided for Corporate Desktop 2008.0 customers. The updated packages have been patched to correct this issue. Packages for 2009.0 are provided due to the Extended Maintenance Program.

tags | advisory, arbitrary, local, trojan

systems | linux, mandriva

advisories | CVE-2010-1163

SHA-256 | 434d5ae46530ca84b4e40cec180a734b59057077f1e870dbe4462b04e8ee1772

Download | Favorite | View

Sudo 1.7.2p5 Local Privilege Escalation

Posted Apr 20, 2010

Authored by Maurizio Agazzini, Valerio Costamagna | Site lab.mediaservice.net

sudoedit as found in sudo versions 1.7.2p5 and below fails to verify the path of the executable and therefore allows for an easy to exploit local privilege escalation vulnerability.

tags | exploit, local

advisories | CVE-2010-1163

SHA-256 | a12883304c4dce1e37de911cb644e89a0c117cf64d9679955b98211211bdd18a

Download | Favorite | View

Mandriva Linux Security Advisory 2010-078

Posted Apr 19, 2010

Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2010-078 - The command matching functionality in sudo 1.6.8 through 1.7.2p5 does not properly handle when a file in the current working directory has the same name as a pseudo-command in the sudoers file and the PATH contains an entry for., which allows local users to execute arbitrary commands via a Trojan horse executable, as demonstrated using sudoedit, a different vulnerability than CVE-2010-0426. Packages for 2008.0 are provided for Corporate Desktop 2008.0 customers. The updated packages have been patched to correct this issue.

tags | advisory, arbitrary, local, trojan

systems | linux, mandriva

advisories | CVE-2010-1163

SHA-256 | d73db4cce13f07558bb167bb1c09f7caf34a09bdb07a74b3921f8547fa6960e6

Download | Favorite | View