Lucene search
Copyright (C) 2010 Greenbone AGOPENVAS:1361412562310840420HistoryApr 16, 2010 - 12:00 a.m.
Ubuntu: Security Advisory (USN-928-1)
2010-04-1600:00:00
Copyright (C) 2010 Greenbone AG
plugins.openvas.org
13
7.8 High
AI Score
Confidence
High
6.9 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
The remote host is missing an update for the
# SPDX-FileCopyrightText: 2010 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.0.840420");
script_cve_id("CVE-2010-0426");
script_tag(name:"creation_date", value:"2010-04-16 15:02:11 +0000 (Fri, 16 Apr 2010)");
script_version("2024-02-02T05:06:04+0000");
script_tag(name:"last_modification", value:"2024-02-02 05:06:04 +0000 (Fri, 02 Feb 2024)");
script_tag(name:"cvss_base", value:"6.9");
script_tag(name:"cvss_base_vector", value:"AV:L/AC:M/Au:N/C:C/I:C/A:C");
script_name("Ubuntu: Security Advisory (USN-928-1)");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2010 Greenbone AG");
script_family("Ubuntu Local Security Checks");
script_dependencies("gather-package-list.nasl");
script_mandatory_keys("ssh/login/ubuntu_linux", "ssh/login/packages", re:"ssh/login/release=UBUNTU(6\.06\ LTS|8\.04\ LTS|8\.10|9\.04|9\.10)");
script_xref(name:"Advisory-ID", value:"USN-928-1");
script_xref(name:"URL", value:"https://ubuntu.com/security/notices/USN-928-1");
script_xref(name:"URL", value:"https://launchpad.net/bugs/563963");
script_tag(name:"summary", value:"The remote host is missing an update for the 'sudo' package(s) announced via the USN-928-1 advisory.");
script_tag(name:"vuldetect", value:"Checks if a vulnerable package version is present on the target host.");
script_tag(name:"insight", value:"Valerio Costamagna discovered that sudo did not properly validate the path
for the 'sudoedit' pseudo-command when the PATH contained only a dot ('.').
If secure_path and ignore_dot were disabled, a local attacker could exploit
this to execute arbitrary code as root if sudo was configured to allow the
attacker to use sudoedit. By default, secure_path is used and the sudoedit
pseudo-command is not used in Ubuntu. This is a different but related issue
to CVE-2010-0426.");
script_tag(name:"affected", value:"'sudo' package(s) on Ubuntu 6.06, Ubuntu 8.04, Ubuntu 8.10, Ubuntu 9.04, Ubuntu 9.10.");
script_tag(name:"solution", value:"Please install the updated package(s).");
script_tag(name:"solution_type", value:"VendorFix");
script_tag(name:"qod_type", value:"package");
exit(0);
}
include("revisions-lib.inc");
include("pkg-lib-deb.inc");
release = dpkg_get_ssh_release();
if(!release)
exit(0);
res = "";
report = "";
if(release == "UBUNTU6.06 LTS") {
if(!isnull(res = isdpkgvuln(pkg:"sudo", ver:"1.6.8p12-1ubuntu6.2", rls:"UBUNTU6.06 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"sudo-ldap", ver:"1.6.8p12-1ubuntu6.2", rls:"UBUNTU6.06 LTS"))) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
exit(0);
}
if(release == "UBUNTU8.04 LTS") {
if(!isnull(res = isdpkgvuln(pkg:"sudo", ver:"1.6.9p10-1ubuntu3.7", rls:"UBUNTU8.04 LTS"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"sudo-ldap", ver:"1.6.9p10-1ubuntu3.7", rls:"UBUNTU8.04 LTS"))) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
exit(0);
}
if(release == "UBUNTU8.10") {
if(!isnull(res = isdpkgvuln(pkg:"sudo", ver:"1.6.9p17-1ubuntu2.3", rls:"UBUNTU8.10"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"sudo-ldap", ver:"1.6.9p17-1ubuntu2.3", rls:"UBUNTU8.10"))) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
exit(0);
}
if(release == "UBUNTU9.04") {
if(!isnull(res = isdpkgvuln(pkg:"sudo", ver:"1.6.9p17-1ubuntu3.2", rls:"UBUNTU9.04"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"sudo-ldap", ver:"1.6.9p17-1ubuntu3.2", rls:"UBUNTU9.04"))) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
exit(0);
}
if(release == "UBUNTU9.10") {
if(!isnull(res = isdpkgvuln(pkg:"sudo", ver:"1.7.0-1ubuntu2.2", rls:"UBUNTU9.10"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"sudo-ldap", ver:"1.7.0-1ubuntu2.2", rls:"UBUNTU9.10"))) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
exit(0);
}
exit(0);
Related
openvas
openvas
Fedora Update for sudo FEDORA-2010-6749
2010-05-07 00:00:00
Mandriva Update for sudo MDVSA-2010:049 (sudo)
2010-03-02 00:00:00
Fedora Update for sudo FEDORA-2010-3359
2010-03-12 00:00:00
nessus
nessus
SuSE 10 Security Update : sudo (ZYPP Patch Number 6892)
2010-10-11 00:00:00
Fedora 13 : sudo-1.7.2p5-1.fc13 (2010-3352)
2010-07-01 00:00:00
Fedora 11 : sudo-1.7.2p6-1.fc11 (2010-6749)
2010-07-01 00:00:00
securityvulns
securityvulns
[USN-928-1] Sudo vulnerability
2010-04-19 00:00:00
[ MDVSA-2010:049 ] sudo
2010-03-01 00:00:00
sudo protection bypass
2010-04-22 00:00:00
fedora
fedora
[SECURITY] Fedora 13 Update: sudo-1.7.2p5-1.fc13
2010-03-10 06:46:05
[SECURITY] Fedora 12 Update: sudo-1.7.2p5-1.fc12
2010-03-06 03:53:38
[SECURITY] Fedora 11 Update: sudo-1.7.2p6-1.fc11
2010-05-03 16:11:14
ubuntucve
ubuntucve
CVE-2010-0426
2010-02-23 00:00:00
CVE-2010-1163
2010-04-16 00:00:00
debiancve
debiancve
CVE-2010-0426
2010-02-24 18:30:00
CVE-2010-1163
2010-04-16 19:30:00
altlinux
altlinux
Security fix for the ALT Linux 6 package sudo version 1:1.6.8p12-alt7
2010-02-23 00:00:00
Security fix for the ALT Linux 8 package sudo version 1:1.6.8p12-alt7
2010-02-23 00:00:00
Security fix for the ALT Linux 5 package sudo version 1:1.6.8p12-alt7
2010-02-23 00:00:00
prion
prion
Directory traversal
2010-02-24 18:30:00
Command injection
2010-04-16 19:30:00
cvelist
cvelist
CVE-2010-0426
2010-02-24 18:00:00
CVE-2010-1163
2010-04-16 19:00:00
ubuntu
ubuntu
Sudo vulnerability
2010-04-15 00:00:00
sudo vulnerabilities
2010-02-26 00:00:00
cve
cve
CVE-2010-0426
2010-02-24 18:30:00
CVE-2010-1163
2010-04-16 19:30:00
freebsd
freebsd
sudo -- Privilege escalation with sudoedit
2010-01-29 00:00:00
seebug
seebug
Sudo sudoeditε½δ»€ζ¬ε°ζιζεζΌζ΄
2010-02-25 00:00:00
veracode
veracode
Privilege Escalation
2020-04-10 00:42:18
Arbitrary Code Execution
2020-04-10 00:48:33
oraclelinux
oraclelinux
sudo security update
2010-02-26 00:00:00
sudo security update
2010-04-20 00:00:00
redhat
redhat
(RHSA-2010:0361) Moderate: sudo security update
2010-04-20 00:00:00
(RHSA-2010:0122) Important: sudo security update
2010-02-26 00:00:00
(RHSA-2010:0172) Important: rhev-hypervisor security and bug fix update
2010-03-24 00:00:00
slackware
slackware
[slackware-security] sudo
2010-04-20 17:51:19
debian
debian
[SECURITY] [DSA 2006-1] New sudo packages fix several vulnerabilities
2010-03-02 20:37:04
[SECURITY] [DSA 2006-1] New sudo packages fix several vulnerabilities
2010-03-02 20:36:52
osv
osv
sudo - several vulnerabilities
2010-03-02 00:00:00
centos
centos
sudo security update
2010-05-28 10:47:01
sudo security update
2010-03-01 18:44:36
packetstorm
packetstorm
Sudo 1.7.2p5 Local Privilege Escalation
2010-04-20 00:00:00
gentoo
gentoo
sudo: Privilege escalation
2010-03-03 00:00:00
vmware
vmware
ESXi utilities and ESX Service Console third party updates
2010-05-27 00:00:00
ESXi utilities and ESX Service Console third party updates
2010-05-27 00:00:00
7.8 High
AI Score
Confidence
High
6.9 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
Related for OPENVAS:1361412562310840420