Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2015-5602HistoryNov 17, 2015 - 3:59 p.m.
CVE-2015-5602
2015-11-1715:59:10
Debian Security Bug Tracker
security-tracker.debian.org
9
CVSS2
7.2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
EPSS
0.001
Percentile
26.0%
sudoedit in Sudo before 1.8.15 allows local users to gain privileges via a symlink attack on a file whose full path is defined using multiple wildcards in /etc/sudoers, as demonstrated by “/home///file.txt.”
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | sudo | < 1.8.15-1.1 | sudo_1.8.15-1.1_all.deb |
| Debian | 11 | all | sudo | < 1.8.15-1.1 | sudo_1.8.15-1.1_all.deb |
| Debian | 999 | all | sudo | < 1.8.15-1.1 | sudo_1.8.15-1.1_all.deb |
| Debian | 13 | all | sudo | < 1.8.15-1.1 | sudo_1.8.15-1.1_all.deb |
Related
nessus
nessus
FreeBSD : sudo -- potential privilege escalation via symlink misconfiguration (2e8cdd36-c3cc-11e5-b5fe-002590263bf5)
2016-01-26 00:00:00
Debian DSA-3440-1 : sudo - security update
2016-01-12 00:00:00
GLSA-201606-13 : sudo: Unauthorized privilege escalation in sudoedit
2016-06-27 00:00:00
debian
debian
[SECURITY] [DSA 3440-1] sudo security update
2016-01-11 13:42:42
[SECURITY] [DLA 382-1] sudo security update
2016-01-11 01:54:58
freebsd
freebsd
sudo -- potential privilege escalation via symlink misconfiguration
2015-11-17 00:00:00
prion
prion
Design/Logic Flaw
2015-11-17 15:59:00
openvas
openvas
Debian: Security Advisory (DLA-382-1)
2023-03-08 00:00:00
Debian: Security Advisory (DSA-3440-1)
2016-01-10 00:00:00
Fedora Update for sudo FEDORA-2015-6
2015-11-09 00:00:00
osv
osv
sudo - security update
2016-01-11 00:00:00
cvelist
cvelist
CVE-2015-5602
2015-11-17 15:00:00
cve
cve
CVE-2015-5602
2015-11-17 15:59:10
gentoo
gentoo
sudo: Unauthorized privilege escalation in sudoedit
2016-06-26 00:00:00
fedora
fedora
[SECURITY] Fedora 23 Update: sudo-1.8.15-1.fc23
2015-11-08 06:54:18
[SECURITY] Fedora 22 Update: sudo-1.8.15-1.fc22
2015-11-08 09:50:38
mageia
mageia
Updated sudo packages fix security vulnerability
2015-11-11 00:26:39
exploitpack
exploitpack
Sudo 1.8.14 (RHEL 567 Ubuntu) - Sudoedit Unauthorized Privilege Escalation
2015-07-28 00:00:00
zdt
zdt
Sudo 1.8.14 - Unauthorized Privilege Vulnerability
2015-07-30 00:00:00
nvd
nvd
CVE-2015-5602
2015-11-17 15:59:10
seebug
seebug
Sudo <= 1.8.14 - Unauthorized Privilege
2015-09-01 00:00:00
ubuntucve
ubuntucve
CVE-2015-5602
2015-11-17 00:00:00
exploitdb
exploitdb
githubexploit
githubexploit
Exploit for CVE-2014-4210
2022-03-19 01:54:15
Exploit for CVE-2014-4210
2022-03-19 01:54:15
CVSS2
7.2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
EPSS
0.001
Percentile
26.0%
Related for DEBIANCVE:CVE-2015-5602