BugTraq
[XNUXER-SECURITY] Root Privilige Escalation in Sudo version 1.6.8p7 without Password, SuSE 9.3 May 31 2005 06:02AM
Xnuxer Security (xnusec gmail com) (2 replies)
Re: [XNUXER-SECURITY] Root Privilige Escalation in Sudo version1.6.8p7 without Password, SuSE 9.3 May 31 2005 04:35PM
Ow Mun Heng (Ow Mun Heng wdc com)
Re: [security (at) suse (dot) de [email concealed]] [XNUXER-SECURITY] Root Privilige Escalation in Sudo version 1.6.8p7 without Password, SuSE 9.3 May 31 2005 08:52AM
Marcus Meissner (meissner suse de) (2 replies)
Re: [security (at) suse (dot) de [email concealed]] [XNUXER-SECURITY] Root Privilige Escalation in Sudo version 1.6.8p7 without Password, SuSE 9.3 May 31 2005 07:44PM
Justin (justinvinn gmail com)
Re: [security (at) suse (dot) de [email concealed]] [XNUXER-SECURITY] Root Privilige Escalation in Sudo version 1.6.8p7 without Password, SuSE 9.3 May 31 2005 05:10PM
Todd C. Miller (Todd Miller courtesan com)
In message <20050531085218.GA10534 (at) suse (dot) de [email concealed]>
so spake Marcus Meissner (meissner):

> I cannot reproduce this in the default installation of sudo in SUSE Linux
> 9.3.

Sudo catches SIGINT and returns an empty string for the password
so I don't see how this could happen unless the user's actual
password was empty. I suppose some kind of PAM misconfiguration
is also possible.

- todd

[ reply ]
 

Privacy Statement
Copyright 2010, SecurityFocus