PT-2011-2010 · Sudo · Sudo
Vincent Danen
·
Published
2011-01-20
·
Updated
2023-02-13
·
CVE-2011-0008
CVSS v2.0
6.9
Medium
| Vector | AV:L/AC:M/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
sudo versions prior to 1.7.4p5-1.fc14
Description
The issue arises from improper interpretation of a system group in the sudoers file, allowing local users to gain root privileges via a sudo command. This is a result of a regression related to a previous issue.
Recommendations
For versions prior to 1.7.4p5-1.fc14, update to version 1.7.4p5-1.fc14 or later to resolve the issue.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Sudo