|
|
Todd Miller Sudo Local Privilege Escalation Vulnerability
|
Bugtraq ID:
|
15191
|
|
Class:
|
Input Validation Error
|
|
CVE:
|
CVE-2005-2959
|
|
Remote:
|
No
|
|
Local:
|
Yes
|
|
Published:
|
Oct 25 2005 12:00AM
|
|
Updated:
|
Mar 14 2007 03:24PM
|
|
Credit:
|
Discovery is credited to Tavis Ormandy.
|
|
Vulnerable:
|
Ubuntu Ubuntu Linux 5.10 powerpc
Ubuntu Ubuntu Linux 5.10 i386
Ubuntu Ubuntu Linux 5.10 amd64
Ubuntu Ubuntu Linux 5.0 4 powerpc
Ubuntu Ubuntu Linux 5.0 4 i386
Ubuntu Ubuntu Linux 5.0 4 amd64
Ubuntu Ubuntu Linux 4.1 ppc
Ubuntu Ubuntu Linux 4.1 ia64
Ubuntu Ubuntu Linux 4.1 ia32
Trustix Secure Linux 3.0
Trustix Secure Linux 2.2
Trustix Secure Enterprise Linux 2.0
Todd Miller Sudo 1.6.8 p9
Todd Miller Sudo 1.6.8 p8
+
OpenPKG OpenPKG 2.4
+
OpenPKG OpenPKG Current
+
RedHat Fedora Core4
Todd Miller Sudo 1.6.8 p7
+
Debian Linux 3.1 sparc
+
Debian Linux 3.1 s/390
+
Debian Linux 3.1 ppc
+
Debian Linux 3.1 mipsel
+
Debian Linux 3.1 mips
+
Debian Linux 3.1 m68k
+
Debian Linux 3.1 ia-64
+
Debian Linux 3.1 ia-32
+
Debian Linux 3.1 hppa
+
Debian Linux 3.1 arm
+
Debian Linux 3.1 amd64
+
Debian Linux 3.1 alpha
+
Debian Linux 3.1
+
OpenPKG OpenPKG 2.3
Todd Miller Sudo 1.6.8 p5
+
Ubuntu Ubuntu Linux 5.0 4 powerpc
+
Ubuntu Ubuntu Linux 5.0 4 i386
+
Ubuntu Ubuntu Linux 5.0 4 amd64
Todd Miller Sudo 1.6.8 p1
+
MandrakeSoft Linux Mandrake 10.2 x86_64
+
MandrakeSoft Linux Mandrake 10.2
+
MandrakeSoft Linux Mandrake 10.1 x86_64
+
MandrakeSoft Linux Mandrake 10.1
+
OpenPKG OpenPKG 2.2
+
OpenPKG OpenPKG Current
Todd Miller Sudo 1.6.8
Todd Miller Sudo 1.6.7 p5
+
Conectiva Linux 10.0
+
Conectiva Linux 9.0
+
MandrakeSoft Corporate Server 3.0 x86_64
+
MandrakeSoft Corporate Server 3.0
+
MandrakeSoft Linux Mandrake 10.0 AMD64
+
MandrakeSoft Linux Mandrake 10.0
+
OpenPKG OpenPKG 2.1
+
RedHat Fedora Core3
+
Ubuntu Ubuntu Linux 4.1 ppc
+
Ubuntu Ubuntu Linux 4.1 ia64
+
Ubuntu Ubuntu Linux 4.1 ia32
Todd Miller Sudo 1.6.7
Todd Miller Sudo 1.6.6
+
Conectiva Linux 8.0
+
Conectiva Linux 7.0
+
Conectiva Linux 6.0
+
Conectiva Linux 5.1
+
Conectiva Linux 5.0
+
Conectiva Linux graficas
+
Conectiva Linux ecommerce
+
Debian Linux 3.0 sparc
+
Debian Linux 3.0 s/390
+
Debian Linux 3.0 ppc
+
Debian Linux 3.0 mipsel
+
Debian Linux 3.0 mips
+
Debian Linux 3.0 m68k
+
Debian Linux 3.0 ia-64
+
Debian Linux 3.0 ia-32
+
Debian Linux 3.0 hppa
+
Debian Linux 3.0 arm
+
Debian Linux 3.0 alpha
+
Debian Linux 3.0
+
MandrakeSoft Corporate Server 2.1 x86_64
+
MandrakeSoft Corporate Server 2.1
+
Slackware Linux 8.0
Todd Miller Sudo 1.6.5 p2
+
NetBSD NetBSD 1.5.2
+
OpenBSD OpenBSD 3.1
+
RedHat Linux 7.2 ia64
+
RedHat Linux 7.2 i386
+
RedHat Linux 7.2 alpha
+
RedHat Linux 7.1 ia64
+
RedHat Linux 7.1 i386
+
RedHat Linux 7.1 alpha
+
RedHat Linux 7.0 i386
+
RedHat Linux 7.0 alpha
-
RedHat Linux 6.2 sparc
-
RedHat Linux 6.2 i386
-
RedHat Linux 6.2 alpha
+
S.u.S.E. Linux 8.0 i386
+
S.u.S.E. Linux 8.0
Todd Miller Sudo 1.6.5 p1
+
Slackware Linux 8.0
Todd Miller Sudo 1.6.5
Todd Miller Sudo 1.6.4 p2
Todd Miller Sudo 1.6.4 p1
+
Conectiva Linux 8.0
+
Conectiva Linux 7.0
+
Conectiva Linux 6.0
+
Conectiva Linux 5.1
+
Conectiva Linux 5.0
+
Conectiva Linux graficas
+
Conectiva Linux ecommerce
Todd Miller Sudo 1.6.4
+
MandrakeSoft Corporate Server 1.0.1
+
MandrakeSoft Linux Mandrake 8.2
+
MandrakeSoft Linux Mandrake 8.1 ia64
+
MandrakeSoft Linux Mandrake 8.1
+
MandrakeSoft Linux Mandrake 8.0 ppc
+
MandrakeSoft Linux Mandrake 8.0
+
MandrakeSoft Linux Mandrake 7.2
+
MandrakeSoft Linux Mandrake 7.1
+
MandrakeSoft Single Network Firewall 7.2
+
RedHat Linux 7.2 ia64
+
RedHat Linux 7.2 i386
+
RedHat Linux 7.2 alpha
+
RedHat Linux 7.1 ia64
+
RedHat Linux 7.1 i386
+
RedHat Linux 7.1 alpha
+
RedHat Linux 7.0 i386
+
RedHat Linux 7.0 alpha
-
RedHat Linux 6.2 sparc
-
RedHat Linux 6.2 i386
-
RedHat Linux 6.2 alpha
Todd Miller Sudo 1.6.3 p7
-
FreeBSD FreeBSD 4.5
-
FreeBSD FreeBSD 4.4
-
FreeBSD FreeBSD 4.3
+
RedHat Linux 7.2 ia64
+
RedHat Linux 7.2 i386
+
S.u.S.E. Linux 7.3 sparc
+
S.u.S.E. Linux 7.3 ppc
+
S.u.S.E. Linux 7.3 i386
+
S.u.S.E. Linux 7.3
+
Slackware Linux 8.0
+
Trustix Secure Linux 1.5
+
Trustix Secure Linux 1.2
+
Trustix Secure Linux 1.1
Todd Miller Sudo 1.6.3 p6
+
Guardian Digital Engarde Secure Linux 1.0.1
+
Guardian Digital Engarde Secure Linux 1.0.1
+
HP Secure OS software for Linux 1.0
+
HP Secure OS software for Linux 1.0
+
RedHat Linux 7.1 ia64
+
RedHat Linux 7.1 ia64
+
RedHat Linux 7.1 i386
+
RedHat Linux 7.1 i386
+
RedHat Linux 7.1 alpha
+
RedHat Linux 7.1 alpha
+
S.u.S.E. Linux 7.2 i386
+
S.u.S.E. Linux 7.2
+
S.u.S.E. Linux 7.2
+
S.u.S.E. Linux 7.1 x86
+
S.u.S.E. Linux 7.1 x86
+
S.u.S.E. Linux 7.1 sparc
+
S.u.S.E. Linux 7.1 sparc
+
S.u.S.E. Linux 7.1 ppc
+
S.u.S.E. Linux 7.1 ppc
+
S.u.S.E. Linux 7.1 alpha
+
S.u.S.E. Linux 7.1 alpha
+
S.u.S.E. Linux 7.1
+
S.u.S.E. Linux 7.1
+
S.u.S.E. Linux 7.0 sparc
+
S.u.S.E. Linux 7.0 sparc
+
S.u.S.E. Linux 7.0 ppc
+
S.u.S.E. Linux 7.0 ppc
+
S.u.S.E. Linux 7.0 i386
+
S.u.S.E. Linux 7.0 i386
+
S.u.S.E. Linux 7.0 alpha
+
S.u.S.E. Linux 7.0 alpha
+
S.u.S.E. Linux 7.0
+
S.u.S.E. Linux 7.0
+
Wirex Immunix OS 7.0
+
Wirex Immunix OS 7.0
Todd Miller Sudo 1.6.3 p5
Todd Miller Sudo 1.6.3 p4
+
Slackware Linux 7.1
Todd Miller Sudo 1.6.3 p3
Todd Miller Sudo 1.6.3 p2
Todd Miller Sudo 1.6.3 p1
Todd Miller Sudo 1.6.3
+
RedHat Linux 7.0 i386
+
RedHat Linux 7.0 alpha
Todd Miller Sudo 1.6.2
-
Debian Linux 2.2
Todd Miller Sudo 1.6.1
Todd Miller Sudo 1.6
S.u.S.E. SuSE Linux Standard Server 8.0
S.u.S.E. SuSE Linux School Server for i386
S.u.S.E. SUSE LINUX Retail Solution 8.0
S.u.S.E. SuSE Linux Openexchange Server 4.0
S.u.S.E. Open-Enterprise-Server 9.0
S.u.S.E. Novell Linux Desktop 9.0
S.u.S.E. Linux Professional 10.0 OSS
S.u.S.E. Linux Professional 10.0
S.u.S.E. Linux Professional 9.3 x86_64
S.u.S.E. Linux Professional 9.3
S.u.S.E. Linux Professional 9.2 x86_64
S.u.S.E. Linux Professional 9.2
S.u.S.E. Linux Professional 9.1 x86_64
S.u.S.E. Linux Professional 9.1
S.u.S.E. Linux Professional 9.0 x86_64
S.u.S.E. Linux Professional 9.0
S.u.S.E. Linux Professional 8.2
S.u.S.E. Linux Personal 10.0 OSS
S.u.S.E. Linux Personal 9.3 x86_64
S.u.S.E. Linux Personal 9.3
S.u.S.E. Linux Personal 9.2 x86_64
S.u.S.E. Linux Personal 9.2
S.u.S.E. Linux Personal 9.1 x86_64
S.u.S.E. Linux Personal 9.1
S.u.S.E. Linux Personal 9.0 x86_64
S.u.S.E. Linux Personal 9.0
S.u.S.E. Linux Personal 8.2
S.u.S.E. Linux Enterprise Server 9
S.u.S.E. Linux Enterprise Server 8
S.u.S.E. Linux Desktop 1.0
OpenPKG OpenPKG 2.5
OpenPKG OpenPKG 2.4
OpenPKG OpenPKG 2.3
MandrakeSoft Multi Network Firewall 2.0
MandrakeSoft Linux Mandrake 2006.0 x86_64
MandrakeSoft Linux Mandrake 2006.0
MandrakeSoft Linux Mandrake 10.2 x86_64
MandrakeSoft Linux Mandrake 10.2
MandrakeSoft Linux Mandrake 10.1 x86_64
MandrakeSoft Linux Mandrake 10.1
MandrakeSoft Corporate Server 3.0 x86_64
MandrakeSoft Corporate Server 3.0
MandrakeSoft Corporate Server 2.1 x86_64
MandrakeSoft Corporate Server 2.1
Conectiva Linux 10.0
Apple Mac OS X Server 10.4.8
Apple Mac OS X Server 10.4.7
Apple Mac OS X Server 10.4.6
Apple Mac OS X Server 10.4.5
Apple Mac OS X Server 10.4.4
Apple Mac OS X Server 10.4.3
Apple Mac OS X Server 10.4.2
Apple Mac OS X Server 10.4.1
Apple Mac OS X Server 10.4
Apple Mac OS X Server 10.3.9
Apple Mac OS X 10.4.8
Apple Mac OS X 10.4.7
Apple Mac OS X 10.4.6
Apple Mac OS X 10.4.5
Apple Mac OS X 10.4.4
Apple Mac OS X 10.4.3
Apple Mac OS X 10.4.2
Apple Mac OS X 10.4.1
Apple Mac OS X 10.4
Apple Mac OS X 10.3.9
|
|
|
|
Not Vulnerable:
|
Apple Mac OS X Server 10.4.9
Apple Mac OS X 10.4.9
|
|
|
