Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2009-0034

Опубликовано: 30 янв. 2009
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 6.9
CVSS3: 7.8

Описание

parse.c in sudo 1.6.9p17 through 1.6.9p19 does not properly interpret a system group (aka %group) in the sudoers file during authorization decisions for a user who belongs to that group, which allows local users to leverage an applicable sudoers file and gain root privileges via a sudo command.

РелизСтатусПримечание
dapper

not-affected

devel

released

1.6.9p17-1ubuntu3
gutsy

not-affected

hardy

released

1.6.9p10-1ubuntu3.4
intrepid

released

1.6.9p17-1ubuntu2.1
upstream

needs-triage

Показывать по

Ссылки на источники

EPSS

Процентиль: 15%
0.00049
Низкий

6.9 Medium

CVSS2

7.8 High

CVSS3

Связанные уязвимости

redhat логотип

CVE-2009-0034

redhat
больше 16 лет назад

parse.c in sudo 1.6.9p17 through 1.6.9p19 does not properly interpret a system group (aka %group) in the sudoers file during authorization decisions for a user who belongs to that group, which allows local users to leverage an applicable sudoers file and gain root privileges via a sudo command.

nvd логотип

CVE-2009-0034

CVSS3: 7.8
nvd
больше 16 лет назад

parse.c in sudo 1.6.9p17 through 1.6.9p19 does not properly interpret a system group (aka %group) in the sudoers file during authorization decisions for a user who belongs to that group, which allows local users to leverage an applicable sudoers file and gain root privileges via a sudo command.

debian логотип

CVE-2009-0034

CVSS3: 7.8
debian
больше 16 лет назад

parse.c in sudo 1.6.9p17 through 1.6.9p19 does not properly interpret ...

github логотип

GHSA-4x95-346p-g442

CVSS3: 7.8
github
около 3 лет назад

parse.c in sudo 1.6.9p17 through 1.6.9p19 does not properly interpret a system group (aka %group) in the sudoers file during authorization decisions for a user who belongs to that group, which allows local users to leverage an applicable sudoers file and gain root privileges via a sudo command.

oracle-oval логотип

ELSA-2009-0267

oracle-oval
больше 16 лет назад

ELSA-2009-0267: sudo security update (MODERATE)

EPSS

Процентиль: 15%
0.00049
Низкий

6.9 Medium

CVSS2

7.8 High

CVSS3