CVE-2006-0151

Exploit

EPSS 0.06%
Published 09.01.2006 23:03:00
Last modified 03.04.2025 01:03:51
Source cve@mitre.org
Teams watchlist Login
Open Login

sudo 1.6.8 and other versions does not clear the PYTHONINSPECT environment variable, which allows limited local users to gain privileges via a Python script, a variant of CVE-2005-4158.

Affected products Warnungen 0 Metrics 2 CWE 0 References 17

Data is provided by the National Vulnerability Database (NVD)

Todd Miller ≫ Sudo Version1.5.6

Todd Miller ≫ Sudo Version1.5.7

Todd Miller ≫ Sudo Version1.5.8

Todd Miller ≫ Sudo Version1.5.9

Todd Miller ≫ Sudo Version1.6

Todd Miller ≫ Sudo Version1.6.1

Todd Miller ≫ Sudo Version1.6.2

Todd Miller ≫ Sudo Version1.6.3

Todd Miller ≫ Sudo Version1.6.3_p1

Todd Miller ≫ Sudo Version1.6.3_p2

Todd Miller ≫ Sudo Version1.6.3_p3

Todd Miller ≫ Sudo Version1.6.3_p4

Todd Miller ≫ Sudo Version1.6.3_p5

Todd Miller ≫ Sudo Version1.6.3_p6

Todd Miller ≫ Sudo Version1.6.3_p7

Todd Miller ≫ Sudo Version1.6.4

Todd Miller ≫ Sudo Version1.6.4_p1

Todd Miller ≫ Sudo Version1.6.4_p2

Todd Miller ≫ Sudo Version1.6.5

Todd Miller ≫ Sudo Version1.6.5_p1

Todd Miller ≫ Sudo Version1.6.5_p2

Todd Miller ≫ Sudo Version1.6.6

Todd Miller ≫ Sudo Version1.6.7

Todd Miller ≫ Sudo Version1.6.7_p5

Todd Miller ≫ Sudo Version1.6.8

Todd Miller ≫ Sudo Version1.6.8_p1

Todd Miller ≫ Sudo Version1.6.8_p2

Todd Miller ≫ Sudo Version1.6.8_p5

Todd Miller ≫ Sudo Version1.6.8_p7

Todd Miller ≫ Sudo Version1.6.8_p8

Todd Miller ≫ Sudo Version1.6.8_p9

Todd Miller ≫ Sudo Version1.6.8_p12

Ubuntu ≫ Ubuntu Linux Version4.1 Editionia64

Ubuntu ≫ Ubuntu Linux Version4.1 Editionppc

Ubuntu ≫ Ubuntu Linux Version5.04 Editionamd64

Ubuntu ≫ Ubuntu Linux Version5.04 Editioni386

Ubuntu ≫ Ubuntu Linux Version5.04 Editionpowerpc

Ubuntu ≫ Ubuntu Linux Version5.10 Editionamd64

Ubuntu ≫ Ubuntu Linux Version5.10 Editioni386

Ubuntu ≫ Ubuntu Linux Version5.10 Editionpowerpc

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.06%	0.166

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.2	3.9	10	AV:L/AC:L/Au:N/C:C/I:C/A:C

http://secunia.com/advisories/18549

http://www.novell.com/linux/security/advisories/2006_02_sr.html

http://secunia.com/advisories/18558

http://secunia.com/advisories/21692

http://www.debian.org/security/2006/dsa-946

http://www.mandriva.com/security/advisories?name=MDKSA-2006:159

http://secunia.com/advisories/18358

Vendor Advisory

http://secunia.com/advisories/18363

Patch

Vendor Advisory

http://secunia.com/advisories/18906

http://secunia.com/advisories/19016

http://slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.421822

http://www.securityfocus.com/bid/16184

Exploit

http://www.trustix.org/errata/2006/0010

https://usn.ubuntu.com/235-2/

https://nvd.nist.gov/vuln/detail/CVE-2006-0151

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2006-0151

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2006-0151

EUVD