Sudo Password Prompt Heap Overflow Vulnerability

Sudo is a widely used Linux/Unix utility allow users to securely run commands as other users.

Sudo is vulnerable to a heap overflow condition related to it's customizable password prompt feature. The nature of the sudo utility requires that it be installed setuid root. Successful exploitation may allow for local attackers to gain root privileges.


Privacy Statement
Copyright 2010, SecurityFocus