|
|
Family: Gentoo Local Security Checks --> Category: infos
[GLSA-200506-22] sudo: Arbitrary command execution Vulnerability Scan
Vulnerability Scan Summary
sudo: Arbitrary command execution
Detailed Explanation for this Vulnerability Test
The remote host is affected by the vulnerability described in GLSA-200506-22
(sudo: Arbitrary command execution)
The sudoers file is used to define the actions sudo users are
permitted to perform. Charles Morris discovered that a specific layout
of the sudoers file could cause the results of an internal check to be
clobbered, leaving sudo vulnerable to a race condition.
Impact
Successful exploitation would permit a local sudo user to execute
arbitrary commands as another user.
Workaround
Reorder the sudoers file using the visudo utility to ensure the
'ALL' pseudo-command precedes other command definitions.
References:
http://www.sudo.ws/sudo/alerts/path_race.html
Solution:
All sudo users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose ">=app-admin/sudo-1.6.8_p9"
Threat Level: Medium
Click HERE for more information and discussions on this network vulnerability scan.
|
