Lucene search

Authorization Bypass

🗓️ 15 Jan 2019 08:23:54Reported by Veracode Vulnerability DatabaseType

veracode🔗 sca.analysiscenter.veracode.com👁 18 Views

Authorization bypass vulnerability in sudo due to improper handling of multiple IP networks

Reporter	Title	Published	Views	Family All 72
Oracle linux	sudo security update	16 Jul 201200:00	–	oraclelinux
Tenable Nessus	Fedora 16 : sudo-1.8.3p1-3.fc16 (2012-8021)	13 Jul 201200:00	–	nessus
Tenable Nessus	openSUSE Security Update : sudo (openSUSE-SU-2012:0652-1)	13 Jun 201400:00	–	nessus
Tenable Nessus	GLSA-201207-01 : sudo: Privilege escalation	10 Jul 201200:00	–	nessus
Tenable Nessus	RHEL 5 / 6 : sudo (RHSA-2012:1081)	17 Jul 201200:00	–	nessus
Tenable Nessus	Amazon Linux AMI : sudo (ALAS-2012-110)	4 Sep 201300:00	–	nessus
Tenable Nessus	Fedora 17 : sudo-1.8.3p1-7.fc17 (2012-7998)	30 May 201200:00	–	nessus
Tenable Nessus	Mandriva Linux Security Advisory : sudo (MDVSA-2012:079)	22 May 201200:00	–	nessus
Tenable Nessus	SuSE 11.1 Security Update : sudo, sudo-debuginfo, sudo-debugsource (SAT Patch Number 6306)	25 Jan 201300:00	–	nessus
Tenable Nessus	Oracle Solaris Third-Party Patch Update : sudo (cve_2012_2337_restriction_bypass)	19 Jan 201500:00	–	nessus

Vulners

Node

sudo sudoMatch1.7.2p1_9.el5_5

sudo sudoMatch1.7.2p1_13.el5

sudo sudoMatch1.7.2p1_10.el5

sudo sudoMatch1.6.9p17_3.el5_3.1

sudo sudoMatch1.7.4p5_9.el6_2

sudo sudoMatch1.6.9p17_3.el5

sudo sudoMatch1.7.4p5_7.el6

sudo sudoMatch1.6.9p17_5.el5

sudo sudoMatch1.7.2p1_8.el5_5

sudo sudoMatch1.7.2p2_9.el6

sudo sudoMatch1.7.2p1_6.el5_5

sudo sudoMatch1.7.2p1_7.el5_5

sudo sudoMatch1.6.9p17_6.el5_4

sudo sudoMatch1.7.4p5_11.el6

sudo sudoMatch1.7.4p5_5.el6

sudo sudoMatch1.7.2p1_5.el5

sudo sudoMatch1.6.8p12_12.el5

Source	Link
securitytracker	www.securitytracker.com/id
secunia	www.secunia.com/advisories/49219
secunia	www.secunia.com/advisories/49244
secunia	www.secunia.com/advisories/49291
secunia	www.secunia.com/advisories/49948
rhn	www.rhn.redhat.com/errata/RHSA-2012-1081.html
access	www.access.redhat.com/security/updates/classification/
sudo	www.sudo.ws/sudo/alerts/netmask.html
debian	www.debian.org/security/2012/dsa-2478
lists	www.lists.fedoraproject.org/pipermail/package-announce/2012-May/081432.html

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

15 Jan 2019 08:54Current

7.5High risk

Vulners AI Score7.5

EPSS0.00042