Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2010-0426HistoryFeb 24, 2010 - 6:30 p.m.
CVE-2010-0426
2010-02-2418:30:00
Debian Security Bug Tracker
security-tracker.debian.org
19
CVSS2
6.9
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
EPSS
0
Percentile
10.1%
sudo 1.6.x before 1.6.9p21 and 1.7.x before 1.7.2p4, when a pseudo-command is enabled, permits a match between the name of the pseudo-command and the name of an executable file in an arbitrary directory, which allows local users to gain privileges via a crafted executable file, as demonstrated by a file named sudoedit in a userβs home directory.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | sudo | <Β 1.7.2p1-1.2 | sudo_1.7.2p1-1.2_all.deb |
| Debian | 11 | all | sudo | <Β 1.7.2p1-1.2 | sudo_1.7.2p1-1.2_all.deb |
| Debian | 999 | all | sudo | <Β 1.7.2p1-1.2 | sudo_1.7.2p1-1.2_all.deb |
| Debian | 13 | all | sudo | <Β 1.7.2p1-1.2 | sudo_1.7.2p1-1.2_all.deb |
Related
openvas
openvas
Fedora Update for sudo FEDORA-2010-6701
2010-05-07 00:00:00
Fedora Update for sudo FEDORA-2010-3415
2010-03-12 00:00:00
FreeBSD Ports: sudo
2010-03-16 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 8 package sudo version 1:1.6.8p12-alt7
2010-02-23 00:00:00
Security fix for the ALT Linux 6 package sudo version 1:1.6.8p12-alt7
2010-02-23 00:00:00
Security fix for the ALT Linux 5 package sudo version 1:1.6.8p12-alt7
2010-02-23 00:00:00
nessus
nessus
SuSE 10 Security Update : sudo (ZYPP Patch Number 6891)
2010-03-09 00:00:00
Fedora 12 : sudo-1.7.2p5-1.fc12 (2010-3359)
2010-07-01 00:00:00
prion
prion
Directory traversal
2010-02-24 18:30:00
Command injection
2010-04-16 19:30:00
nvd
nvd
CVE-2010-0426
2010-02-24 18:30:00
CVE-2010-1163
2010-04-16 19:30:00
ubuntu
ubuntu
Sudo vulnerability
2010-04-15 00:00:00
sudo vulnerabilities
2010-02-26 00:00:00
cvelist
cvelist
CVE-2010-0426
2010-02-24 18:00:00
CVE-2010-1163
2010-04-16 19:00:00
cve
cve
CVE-2010-0426
2010-02-24 18:30:00
CVE-2010-1163
2010-04-16 19:30:00
securityvulns
securityvulns
[USN-928-1] Sudo vulnerability
2010-04-19 00:00:00
[ MDVSA-2010:049 ] sudo
2010-03-01 00:00:00
sudoedit local privilege escalation through PATH manipulation
2010-04-22 00:00:00
fedora
fedora
[SECURITY] Fedora 13 Update: sudo-1.7.2p5-1.fc13
2010-03-10 06:46:05
[SECURITY] Fedora 12 Update: sudo-1.7.2p5-1.fc12
2010-03-06 03:53:38
[SECURITY] Fedora 11 Update: sudo-1.7.2p6-1.fc11
2010-05-03 16:11:14
ubuntucve
ubuntucve
CVE-2010-0426
2010-02-23 00:00:00
CVE-2010-1163
2010-04-16 00:00:00
freebsd
freebsd
sudo -- Privilege escalation with sudoedit
2010-01-29 00:00:00
seebug
seebug
Sudo sudoeditε½δ»€ζ¬ε°ζιζεζΌζ΄
2010-02-25 00:00:00
veracode
veracode
Privilege Escalation
2020-04-10 00:42:18
Arbitrary Code Execution
2020-04-10 00:48:33
slackware
slackware
[slackware-security] sudo
2010-04-20 17:51:19
debian
debian
[SECURITY] [DSA 2006-1] New sudo packages fix several vulnerabilities
2010-03-02 20:36:52
[SECURITY] [DSA 2006-1] New sudo packages fix several vulnerabilities
2010-03-02 20:36:52
redhat
redhat
(RHSA-2010:0361) Moderate: sudo security update
2010-04-20 00:00:00
(RHSA-2010:0122) Important: sudo security update
2010-02-26 00:00:00
(RHSA-2010:0172) Important: rhev-hypervisor security and bug fix update
2010-03-24 00:00:00
centos
centos
sudo security update
2010-05-28 10:47:01
sudo security update
2010-03-01 18:44:36
debiancve
debiancve
CVE-2010-1163
2010-04-16 19:30:00
osv
osv
sudo - several vulnerabilities
2010-03-02 00:00:00
oraclelinux
oraclelinux
sudo security update
2010-02-26 00:00:00
sudo security update
2010-04-20 00:00:00
packetstorm
packetstorm
Sudo 1.7.2p5 Local Privilege Escalation
2010-04-20 00:00:00
gentoo
gentoo
sudo: Privilege escalation
2010-03-03 00:00:00
vmware
vmware
ESXi utilities and ESX Service Console third party updates
2010-05-27 00:00:00
ESXi utilities and ESX Service Console third party updates
2010-05-27 00:00:00
CVSS2
6.9
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
EPSS
0
Percentile
10.1%
Related for DEBIANCVE:CVE-2010-0426