Lucene search
K

28 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2011-0035

Malware in sbrugna...

6.9CVSS7.7AI score0.00333EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2022/05/09 12:0 a.m.26 views

NewStart CGSL CORE 5.05 / MAIN 5.05 : sudo Multiple Vulnerabilities (NS-SA-2022-0028)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has sudo packages installed that are affected by multiple vulnerabilities: - A certain Fedora patch for parse.c in sudo before 1.7.4p5-1.fc14 on Fedora 14 does not properly interpret a system group aka %group in the sudoers fil...

7.8CVSS7.6AI score0.99295EPSS
Exploits95References15
Tenable Nessus
Tenable Nessus
added 2021/10/28 12:0 a.m.23 views

NewStart CGSL CORE 5.04 / MAIN 5.04 : sudo Multiple Vulnerabilities (NS-SA-2021-0101)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has sudo packages installed that are affected by multiple vulnerabilities: - A certain Fedora patch for parse.c in sudo before 1.7.4p5-1.fc14 on Fedora 14 does not properly interpret a system group aka %group in the sudoers fil...

8.2CVSS7.6AI score0.99295EPSS
Exploits94References17
Tenable Nessus
Tenable Nessus
added 2021/10/27 12:0 a.m.28 views

NewStart CGSL MAIN 6.02 : sudo Multiple Vulnerabilities (NS-SA-2021-0120)

The remote NewStart CGSL host, running version MAIN 6.02, has sudo packages installed that are affected by multiple vulnerabilities: - A certain Fedora patch for parse.c in sudo before 1.7.4p5-1.fc14 on Fedora 14 does not properly interpret a system group aka %group in the sudoers file during...

7.8CVSS7.6AI score0.99295EPSS
Exploits108References25
Tenable Nessus
Tenable Nessus
added 2016/03/03 12:0 a.m.26 views

VMware ESX Multiple Vulnerabilities (VMSA-2009-0009) (remote check)

The remote VMware ESX host is missing a security-related patch. It is, therefore, affected by multiple vulnerabilities : - A flaw exists in sudo in file parse.c due to a failure to properly interpret a system group %group in the sudoers configuration file when handling authorization decisions for...

7.8CVSS6.9AI score0.81528EPSS
Exploits15References4
OpenVAS
OpenVAS
added 2015/10/08 12:0 a.m.20 views

Oracle: Security Advisory (ELSA-2009-0267)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.7AI score0.00406EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2012/08/01 12:0 a.m.27 views

Scientific Linux Security Update : sudo on SL5.x i386/x86_64

A flaw was discovered in a way sudo handled group specifications in 'run as' lists in the sudoers configuration file. If sudo configuration allowed a user to run commands as any user of some group and the user was also a member of that group, sudo incorrectly allowed them to run defined commands...

7.8CVSS7.3AI score0.00406EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2011/02/17 12:0 a.m.44 views

VMSA-2009-0009 : ESX Service Console updates for udev, sudo, and curl

a. Service Console package udev A vulnerability in the udev program did not verify whether a NETLINK message originates from kernel space, which allows local users to gain privileges by sending a NETLINK message from user space. The Common Vulnerabilities and Exposures Project cve.mitre.org has...

7.8CVSS6.8AI score0.81528EPSS
Exploits15References4
Tenable Nessus
Tenable Nessus
added 2011/01/28 12:0 a.m.27 views

Mandriva Linux Security Advisory : sudo (MDVSA-2011:018)

Multiple vulnerabilities has been found and corrected in sudo : A a patch for parse.c in sudo does not properly interpret a system group aka %group in the sudoers file during authorization decisions for a user who belongs to that group, which allows local users to leverage an applicable sudoers...

7.8CVSS7.5AI score0.00496EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2011/01/24 12:0 a.m.24 views

Mandriva Update for sudo MDVSA-2011:018 (sudo)

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

7.8CVSS7.6AI score0.00496EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2011/01/24 12:0 a.m.28 views

Mandriva Update for sudo MDVSA-2011:018 (sudo)

Check for the Version of sudo OpenVAS Vulnerability Test Mandriva Update for sudo MDVSA-2011:018 sudo Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...

6.9CVSS0.2AI score0.00496EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2011/01/21 12:0 a.m.21 views

Fedora Update for sudo FEDORA-2011-0470

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

6.9CVSS7.7AI score0.00496EPSS
Exploits0References2
Prion
Prion
added 2011/01/20 7:0 p.m.24 views

Authorization

A certain Fedora patch for parse.c in sudo before 1.7.4p5-1.fc14 on Fedora 14 does not properly interpret a system group aka %group in the sudoers file during authorization decisions for a user who belongs to that group, which allows local users to leverage an applicable sudoers file and gain roo...

6.9CVSS6.4AI score0.00406EPSS
Exploits1References8Affected Software1
CVE
CVE
added 2011/01/20 6:0 p.m.88 views

CVE-2011-0008

CVE-2011-0008 relates to a bug in parse.c of sudo before 1.7.4p5-1.fc14 (Fedora 14) where a system group (the %group) in sudoers could be misinterpreted during authorization for a user who belongs to that group. This regression (tied to CVE-2009-0034) allows a local user to leverage an applicable...

6.9CVSS7.3AI score0.00333EPSS
Exploits0References8Affected Software1
Tenable Nessus
Tenable Nessus
added 2009/04/23 12:0 a.m.31 views

Mandriva Linux Security Advisory : sudo (MDVSA-2009:033)

A vulnerability has been identified in sudo which allowed - depending on the sudoers rules - a sudo-user to execute arbitrary shell commands as root CVE-2009-0034. The updated packages have been patched to prevent this. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and...

7.8CVSS7.7AI score0.00406EPSS
Exploits1References1
seebug.org
seebug.org
added 2009/02/19 12:0 a.m.30 views

Todd Miller Sudo Runas_Alias组本地权限提升漏洞

BUGTRAQ ID: 33517 CVECAN ID: CVE-2009-0034 Sudo是一款允许用户以其他用户权限安全地执行命令的程序,广泛使用在Linux和Unix操作系统下。 sudo在确认用户属于哪个组的时候sudo中的parse.c文件没有正确地解释sudoer配置文件中的系统组(也被称为%group),本地用户可以利用run-as-user-in-group功能无需口令认证便以root用户权限执行sudo命令。 Todd Miller Sudo 1.6.9p17 - 1.6.9p19 厂商补丁: RedHat ------...

6.9CVSS1.4AI score0.00406EPSS
Exploits1
OpenVAS
OpenVAS
added 2009/02/18 12:0 a.m.40 views

Ubuntu USN-722-1 (sudo)

The remote host is missing an update to sudo announced via advisory USN-722-1. OpenVAS Vulnerability Test $Id: ubuntu7221.nasl 7969 2017-12-01 09:23:16Z santu $ $Id: ubuntu7221.nasl 7969 2017-12-01 09:23:16Z santu $ Description: Auto-generated from advisory USN-722-1 sudo Authors: Thomas Reinke...

6.9CVSS0.1AI score0.00406EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2009/02/18 12:0 a.m.24 views

Ubuntu: Security Advisory (USN-722-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.7AI score0.00406EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2009/02/13 12:0 a.m.26 views

FreeBSD Ports: sudo

The remote host is missing an update to the system as announced in the referenced advisory. VID 13d6d997-f455-11dd-8516-001b77d09812 OpenVAS Vulnerability Test $ Description: Auto generated from VID 13d6d997-f455-11dd-8516-001b77d09812 Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...

6.9CVSS7.6AI score0.00406EPSS
Exploits1
OpenVAS
OpenVAS
added 2009/02/10 12:0 a.m.18 views

Mandrake Security Advisory MDVSA-2009:033 (sudo)

The remote host is missing an update to sudo announced via advisory MDVSA-2009:033. OpenVAS Vulnerability Test $Id: mdksa2009033.nasl 6573 2017-07-06 13:10:50Z cfischer $ Description: Auto-generated from advisory MDVSA-2009:033 sudo Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...

6.9CVSS0.4AI score0.00406EPSS
Exploits1
Rows per page
Query Builder