Lucene search
K

4730 matches found

Gitee
Gitee
added 2021/03/18 4:55 p.m.5 views

Exploit for Off-by-one Error in Sudo_Project Sudo

This is a Python script repository for exploiting the CVE-2021-3156 vulnerability in sudo. The vulnerability is a heap-based overflow in the sudo package, which can be exploited to gain root privileges. The repository contains several exploit scripts, each targeting a specific version of the sudo...

7.8CVSS7.9AI score0.99295EPSS
Exploits81
Gitee
Gitee
added 2021/03/18 4:49 p.m.6 views

Exploit for Off-by-one Error in Sudo_Project Sudo

This is a PoC exploit for CVE-2021-3156, a heap-based overflow vulnerability in sudo. The exploit is written in C and uses a combination of techniques to achieve arbitrary code execution. The exploit creates a shared library libnssX/P0PSH3LLZ .so.2 that is loaded by sudo, which contains a buffer...

7.8CVSS8.6AI score0.99295EPSS
Exploits81
GithubExploit
GithubExploit
added 2021/03/15 5:37 p.m.232 views

Exploit for Off-by-one Error in Sudo_Project Sudo

CVE-2021-3156 Sudo Baron Samedit This repository is CVE-202...

7.8CVSS7.9AI score0.99295EPSS
Exploits81
OpenVAS
OpenVAS
added 2021/03/12 12:0 a.m.12 views

Huawei EulerOS: Security Advisory for sudo (EulerOS-SA-2021-1657)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8AI score0.19426EPSS
Exploits13References2
OpenVAS
OpenVAS
added 2021/03/12 12:0 a.m.21 views

Huawei EulerOS: Security Advisory for sudo (EulerOS-SA-2021-1627)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8AI score0.19426EPSS
Exploits13References2
OpenVAS
OpenVAS
added 2021/03/12 12:0 a.m.27 views

Huawei EulerOS: Security Advisory for sudo (EulerOS-SA-2021-1630)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8.5AI score0.99295EPSS
Exploits81References4
OpenVAS
OpenVAS
added 2021/03/12 12:0 a.m.12 views

Huawei EulerOS: Security Advisory for sudo (EulerOS-SA-2021-1669)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8.5AI score0.99295EPSS
Exploits81References4
Tenable Nessus
Tenable Nessus
added 2021/03/11 12:0 a.m.29 views

EulerOS Virtualization 2.9.0 : sudo (EulerOS-SA-2021-1669)

According to the version of the sudo package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability : - Sudo superuser do allows a system administrator to give certain users or groups of users the ability to run some or all commands as roo...

7.8CVSS7.6AI score0.99295EPSS
Exploits81References2
Tenable Nessus
Tenable Nessus
added 2021/03/11 12:0 a.m.29 views

EulerOS Virtualization 2.9.0 : sudo (EulerOS-SA-2021-1657)

According to the version of the sudo package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability : - In Sudo before 1.8.26, if pwfeedback is enabled in /etc/sudoers, users can trigger a stack-based buffer overflow in the privileged sudo...

7.8CVSS7.6AI score0.19426EPSS
Exploits13References2
Tenable Nessus
Tenable Nessus
added 2021/03/10 12:0 a.m.75 views

NewStart CGSL MAIN 6.02 : sudo Vulnerability (NS-SA-2021-0089)

The remote NewStart CGSL host, running version MAIN 6.02, has sudo packages installed that are affected by a vulnerability: - Sudo before 1.9.5p2 has a Heap-based Buffer Overflow, allowing privilege escalation to root via sudoedit -s and a command-line argument that ends with a single backslash...

7.8CVSS7.7AI score0.99295EPSS
Exploits81References2
Tenable Nessus
Tenable Nessus
added 2021/03/10 12:0 a.m.28 views

EulerOS Virtualization 2.9.1 : sudo (EulerOS-SA-2021-1627)

According to the version of the sudo package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability : - Sudo superuser do allows a system administrator to give certain users or groups of users the ability to run some or all commands as roo...

7.8CVSS7.7AI score0.19426EPSS
Exploits13References2
Huawei
Huawei
added 2021/03/10 12:0 a.m.121 views

Security Advisory - Sudo Privilege Escalation Vulnerability

A heap-based buffer overflow vulnerability was found in the way sudo parses command line arguments. This flaw is exploitable by any authenticated, local user who can execute the sudo command. Successful exploitation of this flaw could lead to privilege escalation. Vulnerability ID:...

7.8CVSS8.4AI score0.99295EPSS
Exploits81Affected Software21
Tenable Nessus
Tenable Nessus
added 2021/03/10 12:0 a.m.25 views

NewStart CGSL MAIN 4.06 : sudo Multiple Vulnerabilities (NS-SA-2021-0001)

The remote NewStart CGSL host, running version MAIN 4.06, has sudo packages installed that are affected by multiple vulnerabilities: - In Sudo before 1.8.26, if pwfeedback is enabled in /etc/sudoers, users can trigger a stack-based buffer overflow in the privileged sudo process. pwfeedback is a...

9CVSS7.7AI score0.99295EPSS
Exploits103References7
Tenable Nessus
Tenable Nessus
added 2021/03/10 12:0 a.m.40 views

EulerOS Virtualization for ARM 64 3.0.2.0 : sudo (EulerOS-SA-2021-1390)

According to the versions of the sudo package installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - selinuxeditcopytfiles in sudoedit in Sudo before 1.9.5 allows a local unprivileged user to gain file ownership and escala...

7.8CVSS7.5AI score0.99295EPSS
Exploits83References4
Tenable Nessus
Tenable Nessus
added 2021/03/10 12:0 a.m.52 views

EulerOS Virtualization 3.0.2.6 : sudo (EulerOS-SA-2021-1424)

According to the versions of the sudo package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - selinuxeditcopytfiles in sudoedit in Sudo before 1.9.5 allows a local unprivileged user to gain file ownership and escalate privileg...

7.8CVSS7.3AI score0.99295EPSS
Exploits83References4
Tenable Nessus
Tenable Nessus
added 2021/03/10 12:0 a.m.24 views

EulerOS Virtualization 3.0.2.6 : cifs-utils (EulerOS-SA-2021-1409)

According to the version of the cifs-utils package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability : - It was found that cifs-utils' mount.cifs was invoking a shell when requesting the Samba password, which could be used to inject...

7CVSS6.3AI score0.00652EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2021/03/10 12:0 a.m.40 views

EulerOS Virtualization 2.9.1 : sudo (EulerOS-SA-2021-1630)

According to the version of the sudo package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability : - Sudo superuser do allows a system administrator to give certain users or groups of users the ability to run some or all commands as roo...

7.8CVSS7.6AI score0.99295EPSS
Exploits81References2
Tenable Nessus
Tenable Nessus
added 2021/03/10 12:0 a.m.41 views

NewStart CGSL CORE 5.04 / MAIN 5.04 : sudo Vulnerability (NS-SA-2021-0032)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has sudo packages installed that are affected by a vulnerability: - Sudo before 1.9.5p2 has a Heap-based Buffer Overflow, allowing privilege escalation to root via sudoedit -s and a command-line argument that ends with a single...

7.8CVSS7.7AI score0.99295EPSS
Exploits81References2
OpenVAS
OpenVAS
added 2021/03/05 12:0 a.m.23 views

Huawei EulerOS: Security Advisory for sudo (EulerOS-SA-2021-1390)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.3AI score0.99295EPSS
Exploits83References4
OpenVAS
OpenVAS
added 2021/03/05 12:0 a.m.18 views

Huawei EulerOS: Security Advisory for sudo (EulerOS-SA-2021-1520)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.3AI score0.99295EPSS
Exploits83References4
Rows per page
Query Builder