Lucene search

PRIOn knowledge basePRION:CVE-2016-7076

HistoryMay 29, 2018 - 1:29 p.m.

Design/Logic Flaw

2018-05-2913:29:00

PRIOn knowledge base

www.prio-n.com

7.5 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

sudo before version 1.8.18p1 is vulnerable to a bypass in the sudo noexec restriction if application run via sudo executed wordexp() C library function with a user supplied argument. A local user permitted to run such application via sudo with noexec restriction could possibly use this flaw to execute arbitrary commands with elevated privileges.

CPENameOperatorVersion
sudoge1.6.8
sudole1.8.18

CPE	Name	Operator	Version
	sudo	ge	1.6.8
	sudo	le	1.8.18

References

rhn.redhat.com/errata/RHSA-2016-2872.html

www.securityfocus.com/bid/95778

bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-7076

security.netapp.com/advisory/ntap-20181127-0002/

usn.ubuntu.com/3968-1/

usn.ubuntu.com/3968-3/

www.sudo.ws/alerts/noexec_wordexp.html