CVE-2012-2053

The sudoers file in the Linux system configuration in F5 FirePass 6.0.0 through 6.1.0 and 7.0.0 does not require a password for executing commands as root, which allows local users to gain privileges via the sudo program, as demonstrated by the user account that executes PHP scripts, a different...

Design/Logic Flaw

The sudoers file in the Linux system configuration in F5 FirePass 6.0.0 through 6.1.0 and 7.0.0 does not require a password for executing commands as root, which allows local users to gain privileges via the sudo program, as demonstrated by the user account that executes PHP scripts, a different...

CVE-2012-2053

Summary: CVE-2012-2053 affects F5 FirePass 6.0.0–6.1.0 and 7.0.0, where the sudoers configuration allows passwordless sudo for root, enabling local privilege escalation if an attacker gains OS access (e.g., via a PHP-executing user). The issue is a separate vulnerability from CVE-2012-1777. Root ...

sshd-1.x-2.x-login.txt

Date: Sat, 23 Jan 1999 17:06:44 -0500 From: KuRuPTioN To: [email protected] Subject: SSH 1.x and 2.x Daemon There seems to be incomplete code in the SSH daemon in both versions 1.2.27 and 2.0.11 only tested. The bug simply allows users who with expired accounts in /etc/shadow to continue to...