sudo -- Potential bypass of via wordexp()

ID 2E4FBC9A-9D23-11E6-A298-14DAE9D210B8
Type freebsd
Reporter FreeBSD
Modified 2016-10-28T00:00:00


Todd C. Miller reports:

A flaw exists in sudo's noexec functionality that may allow a user with sudo privileges to run additional commands even when the NOEXEC tag has been applied to a command that uses the wordexp() function.