Vulnerability Description
Sudo 1.7.0 through 1.7.4p3, when a Runas group is configured, does not properly handle use of the -u option in conjunction with the -g option, which allows local users to gain privileges via a command line containing a "-u root" sequence.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Todd Miller | Sudo | 1.7.0 |
References
- http://lists.fedoraproject.org/pipermail/package-announce/2010-September/047516.
- http://lists.opensuse.org/opensuse-security-announce/2010-09/msg00006.html
- http://secunia.com/advisories/40508Vendor Advisory
- http://secunia.com/advisories/41316Vendor Advisory
- http://secunia.com/advisories/42787
- http://security.gentoo.org/glsa/glsa-201009-03.xml
- http://wiki.rpath.com/Advisories:rPSA-2010-0075
- http://www.mandriva.com/security/advisories?name=MDVSA-2010:175
- http://www.redhat.com/support/errata/RHSA-2010-0675.html
- http://www.securityfocus.com/archive/1/514489/100/0/threaded
- http://www.securityfocus.com/archive/1/515545/100/0/threaded
- http://www.securityfocus.com/bid/43019
- http://www.securitytracker.com/id?1024392
- http://www.sudo.ws/sudo/alerts/runas_group.htmlVendor Advisory
- http://www.ubuntu.com/usn/USN-983-1
FAQ
What is CVE-2010-2956?
CVE-2010-2956 is a vulnerability with a CVSS score of 6.2 (MEDIUM). Sudo 1.7.0 through 1.7.4p3, when a Runas group is configured, does not properly handle use of the -u option in conjunction with the -g option, which allows local users to gain privileges via a command...
How severe is CVE-2010-2956?
CVE-2010-2956 has been rated MEDIUM with a CVSS base score of 6.2/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2010-2956?
Check the references section above for vendor advisories and patch information. Affected products include: Todd Miller Sudo.