Todd Miller Sudo 'secure path' Security Bypass Vulnerability

Todd Miller Sudo 'secure path' Security Bypass Vulnerability

References:

CVE-2010-1646 sudo PATH variable privilege escalation (Oracle)
Sudo Homepage (Sudo)
VMSA-2010-0015 VMware ESX third party updates for Service Console (VMWare)
ASA-2010-167 sudo security update (RHSA-2010-0475) (Avaya)
Sudo's secure path option can be cirumvented (Todd Miller)

Privacy Statement
Copyright 2010, SecurityFocus