Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2016-7076

Опубликовано: 26 окт. 2016
Источник: redhat
CVSS3: 6.4
CVSS2: 6.6
EPSS Низкий

Описание

sudo before version 1.8.18p1 is vulnerable to a bypass in the sudo noexec restriction if application run via sudo executed wordexp() C library function with a user supplied argument. A local user permitted to run such application via sudo with noexec restriction could possibly use this flaw to execute arbitrary commands with elevated privileges.

It was discovered that the sudo noexec restriction could have been bypassed if application run via sudo executed wordexp() C library function with a user supplied argument. A local user permitted to run such application via sudo with noexec restriction could possibly use this flaw to execute arbitrary commands with elevated privileges.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 5sudoWill not fix
Red Hat Enterprise Linux 6sudoFixedRHSA-2016:287206.12.2016
Red Hat Enterprise Linux 7sudoFixedRHSA-2016:287206.12.2016

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
Дефект:
CWE-184
https://bugzilla.redhat.com/show_bug.cgi?id=1384982sudo: noexec bypass via wordexp()

EPSS

Процентиль: 23%
0.00074
Низкий

6.4 Medium

CVSS3

6.6 Medium

CVSS2

Связанные уязвимости

ubuntu логотип

CVE-2016-7076

CVSS3: 6.4
ubuntu
больше 7 лет назад

sudo before version 1.8.18p1 is vulnerable to a bypass in the sudo noexec restriction if application run via sudo executed wordexp() C library function with a user supplied argument. A local user permitted to run such application via sudo with noexec restriction could possibly use this flaw to execute arbitrary commands with elevated privileges.

nvd логотип

CVE-2016-7076

CVSS3: 6.4
nvd
больше 7 лет назад

sudo before version 1.8.18p1 is vulnerable to a bypass in the sudo noexec restriction if application run via sudo executed wordexp() C library function with a user supplied argument. A local user permitted to run such application via sudo with noexec restriction could possibly use this flaw to execute arbitrary commands with elevated privileges.

debian логотип

CVE-2016-7076

CVSS3: 6.4
debian
больше 7 лет назад

sudo before version 1.8.18p1 is vulnerable to a bypass in the sudo noe ...

github логотип

GHSA-v56m-9vh5-5qh5

CVSS3: 7.8
github
больше 3 лет назад

sudo before version 1.8.18p1 is vulnerable to a bypass in the sudo noexec restriction if application run via sudo executed wordexp() C library function with a user supplied argument. A local user permitted to run such application via sudo with noexec restriction could possibly use this flaw to execute arbitrary commands with elevated privileges.

suse-cvrf логотип

SUSE-SU-2016:2893-1

suse-cvrf
почти 9 лет назад

Security update for sudo

EPSS

Процентиль: 23%
0.00074
Низкий

6.4 Medium

CVSS3

6.6 Medium

CVSS2