Lucene search
K

6 matches found

Ubuntu
Ubuntu
added 2023/05/29 11:2 a.m.60 views

USN-6005-2: Sudo vulnerabilities

USN-6005-1 fixed vulnerabilities in Sudo. This update provides the corresponding updates for Ubuntu 16.04 LTS. Original advisory details: Matthieu Barjole and Victor Cutillas discovered that Sudo incorrectly escaped control characters in log messages and sudoreplay output. An attacker could...

5.3CVSS7.4AI score0.00953EPSS
Exploits0
Debian
Debian
added 2017/05/30 3:37 p.m.39 views

[SECURITY] [DSA 3867-1] sudo security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3867-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso May 30, 2017 https://www.debian.org/security/faq -...

6.9CVSS1.7AI score0.08018EPSS
Exploits8
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.23 views

Debian Security Advisory DSA 870-1 (sudo)

The remote host is missing an update to sudo announced via advisory DSA 870-1. Tavis Ormandy noticed that sudo, a program that provides limited super user privileges to specific users, does not clean the environment sufficiently. The SHELLOPTS and PS4 variables are dangerous and are still passed...

4.6CVSS8.5AI score0.00624EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2006/10/14 12:0 a.m.25 views

Debian DSA-870-1 : sudo - missing input sanitising

Tavis Ormandy noticed that sudo, a program that provides limited super user privileges to specific users, does not clean the environment sufficiently. The SHELLOPTS and PS4 variables are dangerous and are still passed through to the program running as privileged user. This can result in the...

4.6CVSS5.8AI score0.00624EPSS
Exploits2References2
Debian
Debian
added 2005/10/25 9:39 a.m.50 views

[SECURITY] [DSA 870-1] New sudo packages fix arbitrary command execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 870-1 [email protected] http://www.debian.org/security/ Martin Schulze October 25th, 2005 http://www.debian.org/security/faq -...

4.6CVSS0.5AI score0.00624EPSS
Exploits2
securityvulns
securityvulns
added 2005/10/25 12:0 a.m.64 views

[Full-disclosure] [SECURITY] [DSA 870-1] New sudo packages fix arbitrary command execution

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 870-1 [email protected] http://www.debian.org/security/ Martin Schulze October 25th, 2005 http://www.debian.org/security/faq -...

4.6CVSS0.4AI score0.00624EPSS
Exploits2
Rows per page
Query Builder