Sudo Runas Group Matching Error Lets Local Users Gain Elevated Privileges
|
SecurityTracker Alert ID: 1024392 |
SecurityTracker URL: http://securitytracker.com/id/1024392
|
CVE Reference:
CVE-2010-2956
(Links to External Site)
|
Date: Sep 7 2010
|
Impact:
User access via local system
|
Fix Available: Yes Vendor Confirmed: Yes
|
Version(s): 1.7.0 - 1.7.4p3
|
Description:
A vulnerability was reported in Sudo. A local user can obtain elevated privileges on the target system.
When the '-u' option is specified in addition to the '-g' option, the Runas group matching code will allow the command to be run as the specified user name as long as the specified group name is permitted by the system.
Markus Wuethrich of Swiss Post - PostFinance reported this vulnerability.
|
Impact:
A local user can obtain elevated privileges on the target system.
|
Solution:
The vendor has issued a fix (1.7.4p4).
The vendor's advisory is available at:
http://www.sudo.ws/sudo/alerts/runas_group.html
|
Vendor URL: www.sudo.ws/sudo/alerts/runas_group.html (Links to External Site)
|
Cause:
Access control error
|
Underlying OS: Linux (Any)
|
|
Message History:
This archive entry has one or more follow-up message(s) listed below.
|
Source Message Contents
|
|
[Original Message Not Available for Viewing]
|
|