7.2
CVE-2002-0043
- EPSS 0.19%
- Veröffentlicht 31.01.2002 05:00:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
- Quelle cve@mitre.org
- Teams Watchlist Login
- Unerledigt Login
sudo 1.6.0 through 1.6.3p7 does not properly clear the environment before calling the mail program, which could allow local users to gain root privileges by modifying environment variables and changing how the mail program is invoked.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Todd Miller ≫ Sudo Version1.6
Todd Miller ≫ Sudo Version1.6.1
Todd Miller ≫ Sudo Version1.6.2
Todd Miller ≫ Sudo Version1.6.3
Todd Miller ≫ Sudo Version1.6.3_p1
Todd Miller ≫ Sudo Version1.6.3_p2
Todd Miller ≫ Sudo Version1.6.3_p3
Todd Miller ≫ Sudo Version1.6.3_p4
Todd Miller ≫ Sudo Version1.6.3_p5
Todd Miller ≫ Sudo Version1.6.3_p6
Todd Miller ≫ Sudo Version1.6.3_p7
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.19% | 0.382 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.2 | 3.9 | 10 |
AV:L/AC:L/Au:N/C:C/I:C/A:C
|