Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-cxqf-2pgv-vx9p

Опубликовано: 17 мая 2022
Источник: github
Github: Не прошло ревью

Описание

sudoedit in Sudo before 1.8.15 allows local users to gain privileges via a symlink attack on a file whose full path is defined using multiple wildcards in /etc/sudoers, as demonstrated by "/home///file.txt."

sudoedit in Sudo before 1.8.15 allows local users to gain privileges via a symlink attack on a file whose full path is defined using multiple wildcards in /etc/sudoers, as demonstrated by "/home///file.txt."

Ссылки

EPSS

Процентиль: 90%
0.05506
Низкий

CVE ID

CVE-2015-5602

Связанные уязвимости

ubuntu логотип

CVE-2015-5602

ubuntu
около 10 лет назад

sudoedit in Sudo before 1.8.15 allows local users to gain privileges via a symlink attack on a file whose full path is defined using multiple wildcards in /etc/sudoers, as demonstrated by "/home/*/*/file.txt."

redhat логотип

CVE-2015-5602

redhat
больше 10 лет назад

sudoedit in Sudo before 1.8.15 allows local users to gain privileges via a symlink attack on a file whose full path is defined using multiple wildcards in /etc/sudoers, as demonstrated by "/home/*/*/file.txt."

nvd логотип

CVE-2015-5602

nvd
около 10 лет назад

sudoedit in Sudo before 1.8.15 allows local users to gain privileges via a symlink attack on a file whose full path is defined using multiple wildcards in /etc/sudoers, as demonstrated by "/home/*/*/file.txt."

debian логотип

CVE-2015-5602

debian
около 10 лет назад

sudoedit in Sudo before 1.8.15 allows local users to gain privileges v ...

EPSS

Процентиль: 90%
0.05506
Низкий

CVE ID

CVE-2015-5602