sudo -- Potential bypass of sudo_noexec.so via wordexp()

2016-10-28T00:00:00
ID 2E4FBC9A-9D23-11E6-A298-14DAE9D210B8
Type freebsd
Reporter FreeBSD
Modified 2016-10-28T00:00:00

Description

Todd C. Miller reports:

A flaw exists in sudo's noexec functionality that may allow a user with sudo privileges to run additional commands even when the NOEXEC tag has been applied to a command that uses the wordexp() function.