Lucene search
K

11 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2015-5602

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - sudoedit in Sudo before 1.8.15 allows local users to gain privileges via a symlink attack on a file whose full path is defined using multiple wildcards in...

7.2CVSS7.1AI score0.01458EPSS
Exploits5References3
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.18 views

RHEL 7 : sudo (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - sudo: Unauthorized privilege escalation in sudoedit CVE-2015-5602 - sudo: by using ! character in the...

7.5CVSS7.3AI score0.03295EPSS
Exploits5References5
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.19 views

RHEL 5 : sudo (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - sudo: noexec bypass via wordexp CVE-2016-7076 - sudo before 1.8.12 does not ensure that the TZ environmen...

7.8CVSS6.9AI score0.03295EPSS
Exploits6References7
Tenable Nessus
Tenable Nessus
added 2021/10/27 12:0 a.m.28 views

NewStart CGSL MAIN 6.02 : sudo Multiple Vulnerabilities (NS-SA-2021-0120)

The remote NewStart CGSL host, running version MAIN 6.02, has sudo packages installed that are affected by multiple vulnerabilities: - A certain Fedora patch for parse.c in sudo before 1.7.4p5-1.fc14 on Fedora 14 does not properly interpret a system group aka %group in the sudoers file during...

7.8CVSS7.6AI score0.99295EPSS
Exploits108References25
Tenable Nessus
Tenable Nessus
added 2016/03/04 12:0 a.m.20 views

Fedora 23 : sudo-1.8.15-1.fc23 (2015-386863df8a)

sudo-1.8.15-1.fc21 - update to 1.8.15 - fixes CVE-2015-5602 sudo-1.8.15-1.fc22 - update to 1.8.15 - fixes CVE-2015-5602 sudo-1.8.15-1.fc23 - update to 1.8.15 - fixes CVE-2015-5602 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security...

7.2CVSS7.2AI score0.01458EPSS
Exploits5References3
Tenable Nessus
Tenable Nessus
added 2016/03/04 12:0 a.m.31 views

Fedora 22 : sudo-1.8.15-1.fc22 (2015-6a267387c0)

sudo-1.8.15-1.fc21 - update to 1.8.15 - fixes CVE-2015-5602 sudo-1.8.15-1.fc22 - update to 1.8.15 - fixes CVE-2015-5602 sudo-1.8.15-1.fc23 - update to 1.8.15 - fixes CVE-2015-5602 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security...

7.2CVSS7.2AI score0.01458EPSS
Exploits5References3
Tenable Nessus
Tenable Nessus
added 2016/01/26 12:0 a.m.25 views

FreeBSD : sudo -- potential privilege escalation via symlink misconfiguration (2e8cdd36-c3cc-11e5-b5fe-002590263bf5)

MITRE reports : sudoedit in Sudo before 1.8.15 allows local users to gain privileges via a symlink attack on a file whose full path is defined using multiple wildcards in /etc/sudoers, as demonstrated by '/home///file.txt.' %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text...

7.2CVSS7.2AI score0.01458EPSS
Exploits5References5
OSV
OSV
added 2015/11/17 3:59 p.m.5 views

CVE-2015-5602

sudoedit in Sudo before 1.8.15 allows local users to gain privileges via a symlink attack on a file whose full path is defined using multiple wildcards in /etc/sudoers, as demonstrated by "/home///file.txt."...

6.2AI score
Exploits0References11
OpenVAS
OpenVAS
added 2015/11/11 12:0 a.m.15 views

Mageia: Security Advisory (MGASA-2015-0443)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.2CVSS7.7AI score0.01458EPSS
Exploits5References5
0day.today
0day.today
added 2015/07/30 12:0 a.m.42 views

Sudo 1.8.14 - Unauthorized Privilege Vulnerability

Exploit for linux platform in category local exploits Exploit Title: sudo -e - a.k.a. sudoedit - unauthorized privilege escalation Date: 07-23-2015 Exploit Author: Daniel Svartman Version: Sudo ALL=root NOPASSWD: sudoedit /home///test.txt Then, logged as that user, create a subdirectory within it...

7.2CVSS0.6AI score0.01458EPSS
Exploits5
Exploit DB
Exploit DB
added 2015/07/28 12:0 a.m.677 views

Sudo 1.8.14 (RHEL 5/6/7 / Ubuntu) - 'Sudoedit' Unauthorized Privilege Escalation

Exploit Title: sudo -e - a.k.a. sudoedit - unauthorized privilege escalation Date: 07-23-2015 Exploit Author: Daniel Svartman Version: Sudo ALL=root NOPASSWD: sudoedit /home///test.txt Then, logged as that user, create a subdirectory within its home folder e.g. /home//newdir and later create a...

7.2CVSS7.5AI score0.01458EPSS
Exploits5
Rows per page
Query Builder