Vulnerability Description
sudo before 1.6.8p2 allows local users to execute arbitrary commands by using "()" style environment variables to create functions that have the same name as any program within the bash script that is called without using the program's full pathname.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Mandrakesoft | Mandrake Multi Network Firewall | 8.2 |
| Todd Miller | Sudo | 1.5.6 |
| Debian | Debian Linux | 3.0 |
| Mandrakesoft | Mandrake Linux | 9.2 |
| Mandrakesoft | Mandrake Linux Corporate Server | 2.1 |
| Trustix | Secure Linux | 1.5 |
| Ubuntu | Ubuntu Linux | 4.1 |
References
- http://lists.apple.com/archives/security-announce/2005/May/msg00001.html
- http://marc.info/?l=bugtraq&m=110028877431192&w=2
- http://marc.info/?l=bugtraq&m=110598298225675&w=2
- http://www.debian.org/security/2004/dsa-596
- http://www.mandriva.com/security/advisories?name=MDKSA-2004:133
- http://www.securityfocus.com/bid/11668PatchVendor Advisory
- http://www.sudo.ws/sudo/alerts/bash_functions.html
- http://www.trustix.org/errata/2004/0061/
- https://exchange.xforce.ibmcloud.com/vulnerabilities/18055
- https://www.ubuntu.com/usn/usn-28-1/
- http://lists.apple.com/archives/security-announce/2005/May/msg00001.html
- http://marc.info/?l=bugtraq&m=110028877431192&w=2
- http://marc.info/?l=bugtraq&m=110598298225675&w=2
- http://www.debian.org/security/2004/dsa-596
- http://www.mandriva.com/security/advisories?name=MDKSA-2004:133
FAQ
What is CVE-2004-1051?
CVE-2004-1051 is a vulnerability with a CVSS score of 7.2 (HIGH). sudo before 1.6.8p2 allows local users to execute arbitrary commands by using "()" style environment variables to create functions that have the same name as any program within the bash script that is...
How severe is CVE-2004-1051?
CVE-2004-1051 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2004-1051?
Check the references section above for vendor advisories and patch information. Affected products include: Mandrakesoft Mandrake Multi Network Firewall, Todd Miller Sudo, Debian Debian Linux, Mandrakesoft Mandrake Linux, Mandrakesoft Mandrake Linux Corporate Server.