CVE-2011-0010

2011-01-1818:03:08

CWE-264

[email protected]

web.nvd.nist.gov

sudo

authentication bypass

cve-2011-0010

nvd

CVSS2

4.4

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:P/I:P/A:P

AI Score

7.5

Confidence

High

EPSS

0.001

Percentile

17.2%

JSON

check.c in sudo 1.7.x before 1.7.4p5, when a Runas group is configured, does not require a password for command execution that involves a gid change but no uid change, which allows local users to bypass an intended authentication requirement via the -g option to a sudo command.

Affected configurations

NVD

Node

todd_millersudoMatch1.7.0

todd_millersudoMatch1.7.1

todd_millersudoMatch1.7.2

todd_millersudoMatch1.7.2p1

todd_millersudoMatch1.7.2p2

todd_millersudoMatch1.7.2p3

todd_millersudoMatch1.7.2p4

todd_millersudoMatch1.7.2p5

todd_millersudoMatch1.7.2p6

todd_millersudoMatch1.7.2p7

todd_millersudoMatch1.7.3b1

todd_millersudoMatch1.7.4

todd_millersudoMatch1.7.4p1

todd_millersudoMatch1.7.4p2

todd_millersudoMatch1.7.4p3

todd_millersudoMatch1.7.4p4

VendorProductVersionCPE
todd_millersudo1.7.2p6cpe:/a:todd_miller:sudo:1.7.2p6:::
todd_millersudo1.7.4p4cpe:/a:todd_miller:sudo:1.7.4p4:::
todd_millersudo1.7.0cpe:/a:todd_miller:sudo:1.7.0:::
todd_millersudo1.7.4p3cpe:/a:todd_miller:sudo:1.7.4p3:::
todd_millersudo1.7.2p2cpe:/a:todd_miller:sudo:1.7.2p2:::
todd_millersudo1.7.4cpe:/a:todd_miller:sudo:1.7.4:::
todd_millersudo1.7.2p1cpe:/a:todd_miller:sudo:1.7.2p1:::
todd_millersudo1.7.2p4cpe:/a:todd_miller:sudo:1.7.2p4:::
todd_millersudo1.7.2p5cpe:/a:todd_miller:sudo:1.7.2p5:::
todd_millersudo1.7.4p1cpe:/a:todd_miller:sudo:1.7.4p1:::

Vendor	Product	Version	CPE
todd_miller	sudo	1.7.2p6	cpe:/a:todd_miller:sudo:1.7.2p6:::
todd_miller	sudo	1.7.4p4	cpe:/a:todd_miller:sudo:1.7.4p4:::
todd_miller	sudo	1.7.0	cpe:/a:todd_miller:sudo:1.7.0:::
todd_miller	sudo	1.7.4p3	cpe:/a:todd_miller:sudo:1.7.4p3:::
todd_miller	sudo	1.7.2p2	cpe:/a:todd_miller:sudo:1.7.2p2:::
todd_miller	sudo	1.7.4	cpe:/a:todd_miller:sudo:1.7.4:::
todd_miller	sudo	1.7.2p1	cpe:/a:todd_miller:sudo:1.7.2p1:::
todd_miller	sudo	1.7.2p4	cpe:/a:todd_miller:sudo:1.7.2p4:::
todd_miller	sudo	1.7.2p5	cpe:/a:todd_miller:sudo:1.7.2p5:::
todd_miller	sudo	1.7.4p1	cpe:/a:todd_miller:sudo:1.7.4p1:::