CVE-2006-0151

Опубликовано: 09 янв. 2006

Источник: nvd

CVSS2: 7.2

EPSS Низкий

Описание

sudo 1.6.8 and other versions does not clear the PYTHONINSPECT environment variable, which allows limited local users to gain privileges via a Python script, a variant of CVE-2005-4158.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:todd_miller:sudo:1.5.6:*:*:*:*:*:*:*

cpe:2.3:a:todd_miller:sudo:1.5.7:*:*:*:*:*:*:*

cpe:2.3:a:todd_miller:sudo:1.5.8:*:*:*:*:*:*:*

cpe:2.3:a:todd_miller:sudo:1.5.9:*:*:*:*:*:*:*

cpe:2.3:a:todd_miller:sudo:1.6:*:*:*:*:*:*:*

cpe:2.3:a:todd_miller:sudo:1.6.1:*:*:*:*:*:*:*

cpe:2.3:a:todd_miller:sudo:1.6.2:*:*:*:*:*:*:*

cpe:2.3:a:todd_miller:sudo:1.6.3:*:*:*:*:*:*:*

cpe:2.3:a:todd_miller:sudo:1.6.3_p1:*:*:*:*:*:*:*

cpe:2.3:a:todd_miller:sudo:1.6.3_p2:*:*:*:*:*:*:*

cpe:2.3:a:todd_miller:sudo:1.6.3_p3:*:*:*:*:*:*:*

cpe:2.3:a:todd_miller:sudo:1.6.3_p4:*:*:*:*:*:*:*

cpe:2.3:a:todd_miller:sudo:1.6.3_p5:*:*:*:*:*:*:*

cpe:2.3:a:todd_miller:sudo:1.6.3_p6:*:*:*:*:*:*:*

cpe:2.3:a:todd_miller:sudo:1.6.3_p7:*:*:*:*:*:*:*

cpe:2.3:a:todd_miller:sudo:1.6.4:*:*:*:*:*:*:*

cpe:2.3:a:todd_miller:sudo:1.6.4_p1:*:*:*:*:*:*:*

cpe:2.3:a:todd_miller:sudo:1.6.4_p2:*:*:*:*:*:*:*

cpe:2.3:a:todd_miller:sudo:1.6.5:*:*:*:*:*:*:*

cpe:2.3:a:todd_miller:sudo:1.6.5_p1:*:*:*:*:*:*:*

cpe:2.3:a:todd_miller:sudo:1.6.5_p2:*:*:*:*:*:*:*

cpe:2.3:a:todd_miller:sudo:1.6.6:*:*:*:*:*:*:*

cpe:2.3:a:todd_miller:sudo:1.6.7:*:*:*:*:*:*:*

cpe:2.3:a:todd_miller:sudo:1.6.7_p5:*:*:*:*:*:*:*

cpe:2.3:a:todd_miller:sudo:1.6.8:*:*:*:*:*:*:*

cpe:2.3:a:todd_miller:sudo:1.6.8_p1:*:*:*:*:*:*:*

cpe:2.3:a:todd_miller:sudo:1.6.8_p2:*:*:*:*:*:*:*

cpe:2.3:a:todd_miller:sudo:1.6.8_p5:*:*:*:*:*:*:*

cpe:2.3:a:todd_miller:sudo:1.6.8_p7:*:*:*:*:*:*:*

cpe:2.3:a:todd_miller:sudo:1.6.8_p8:*:*:*:*:*:*:*

cpe:2.3:a:todd_miller:sudo:1.6.8_p9:*:*:*:*:*:*:*

cpe:2.3:a:todd_miller:sudo:1.6.8_p12:*:*:*:*:*:*:*

Конфигурация 2

Одно из

cpe:2.3:o:ubuntu:ubuntu_linux:4.1:*:ia64:*:*:*:*:*

cpe:2.3:o:ubuntu:ubuntu_linux:4.1:*:ppc:*:*:*:*:*

cpe:2.3:o:ubuntu:ubuntu_linux:5.04:*:amd64:*:*:*:*:*

cpe:2.3:o:ubuntu:ubuntu_linux:5.04:*:i386:*:*:*:*:*

cpe:2.3:o:ubuntu:ubuntu_linux:5.04:*:powerpc:*:*:*:*:*

cpe:2.3:o:ubuntu:ubuntu_linux:5.10:*:amd64:*:*:*:*:*

cpe:2.3:o:ubuntu:ubuntu_linux:5.10:*:i386:*:*:*:*:*

cpe:2.3:o:ubuntu:ubuntu_linux:5.10:*:powerpc:*:*:*:*:*

EPSS

Процентиль: 20%

0.00063

Низкий

7.2 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

CVE-2006-0151

ubuntu

больше 19 лет назад

sudo 1.6.8 and other versions does not clear the PYTHONINSPECT environment variable, which allows limited local users to gain privileges via a Python script, a variant of CVE-2005-4158.

CVE-2006-0151

redhat

почти 21 год назад

sudo 1.6.8 and other versions does not clear the PYTHONINSPECT environment variable, which allows limited local users to gain privileges via a Python script, a variant of CVE-2005-4158.

CVE-2006-0151

debian

больше 19 лет назад

sudo 1.6.8 and other versions does not clear the PYTHONINSPECT environ ...

GHSA-7vx7-4r5w-mwxw

github

больше 3 лет назад

sudo 1.6.8 and other versions does not clear the PYTHONINSPECT environment variable, which allows limited local users to gain privileges via a Python script, a variant of CVE-2005-4158.

EPSS

Процентиль: 20%

0.00063

Низкий

7.2 High

CVSS2

Дефекты

NVD-CWE-Other