Sudo CVE-2017-1000368 Incomplete Fix Local Privilege Escalation Vulnerability

Sudo is prone to a local privilege-escalation vulnerability.

Local attackers could exploit this issue to run arbitrary commands with root privileges.

This issue is fixed in sudo 1.8.20p2.

NOTE: This issue is the result of an incomplete fix for the issue described in BID 98745 (Sudo '/src/ttyname.c' Local Privilege Escalation Vulnerability).


 

Privacy Statement
Copyright 2010, SecurityFocus