Lucene search
Ubuntu.comUB:CVE-2010-0427HistoryFeb 23, 2010 - 12:00 a.m.
CVE-2010-0427
2010-02-2300:00:00
ubuntu.com
ubuntu.com
9
0.0004 Low
EPSS
Percentile
9.8%
sudo 1.6.x before 1.6.9p21, when the runas_default option is used, does not
properly set group memberships, which allows local users to gain privileges
via a sudo command.
Bugs
- <http://www.gratisoft.us/bugzilla/show_bug.cgi?id=349>
- <https://bugzilla.redhat.com/show_bug.cgi?id=567622>
Notes
| Author | Note |
|---|---|
| jdstrand | group privilege escalation, but requires non-default configuration. This only affects 1.6 and not 1.7 Dapper (1.6.8) is not affected |
Related
openvas
openvas
Mandriva Update for sudo MDVSA-2010:052 (sudo)
2010-03-12 00:00:00
Mandriva Update for sudo MDVSA-2010:052 (sudo)
2010-03-12 00:00:00
Mandriva Update for microcode_ctl MDVA-2010:052 (microcode_ctl)
2010-02-15 00:00:00
cvelist
cvelist
CVE-2010-0427
2010-02-25 19:00:00
cve
cve
CVE-2010-0427
2010-02-25 19:30:00
nessus
nessus
Mandriva Linux Security Advisory : sudo (MDVSA-2010:052)
2010-03-02 00:00:00
openSUSE Security Update : sudo (sudo-2083)
2010-03-09 00:00:00
GLSA-201003-01 : sudo: Privilege escalation
2010-03-04 00:00:00
seebug
seebug
Todd Miller Sudo 'runas_default'ćŹĺ°çšććĺćźć´
2010-03-02 00:00:00
prion
prion
Command injection
2010-02-25 19:30:00
debiancve
debiancve
CVE-2010-0427
2010-02-25 19:30:00
veracode
veracode
Privilege Escalation
2020-04-10 00:42:19
oraclelinux
oraclelinux
sudo security update
2010-02-26 00:00:00
redhat
redhat
(RHSA-2010:0122) Important: sudo security update
2010-02-26 00:00:00
(RHSA-2010:0172) Important: rhev-hypervisor security and bug fix update
2010-03-24 00:00:00
gentoo
gentoo
sudo: Privilege escalation
2010-03-03 00:00:00
centos
centos
sudo security update
2010-03-01 18:44:36
vmware
vmware
ESXi utilities and ESX Service Console third party updates
2010-05-27 00:00:00
ESXi utilities and ESX Service Console third party updates
2010-05-27 00:00:00