2 matches found
Debian Security Advisory DSA 735-1 (sudo)
The remote host is missing an update to sudo announced via advisory DSA 735-1. OpenVAS Vulnerability Test $Id: deb7351.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 735-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...
Debian DSA-735-1 : sudo - pathname validation race
A local user who has been granted permission to run commands via sudo could run arbitrary commands as a privileged user due to a flaw in sudo's pathname validation. This bug only affects configurations which have restricted user configurations prior to an ALL directive in the configuration file. ...