CVE-2011-0008

EPSS 0.05%
Veröffentlicht 20.01.2011 19:00:07
Zuletzt bearbeitet 11.04.2025 00:51:21
Quelle secalert@redhat.com
Teams Watchlist Login
Unerledigt Login

A certain Fedora patch for parse.c in sudo before 1.7.4p5-1.fc14 on Fedora 14 does not properly interpret a system group (aka %group) in the sudoers file during authorization decisions for a user who belongs to that group, which allows local users to leverage an applicable sudoers file and gain root privileges via a sudo command.  NOTE: this vulnerability exists because of a CVE-2009-0034 regression.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 11

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Todd Miller ≫ Sudo Version <= 1.7.4p5

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.3.1

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.5

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.5.2

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.5.3

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.5.6

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.5.7

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.5.8

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.5.9

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.1

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.2

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.2p1

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.2p2

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.2p3

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.3

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.3_p1

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.3_p2

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.3_p3

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.3_p4

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.3_p5

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.3_p6

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.3_p7

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.3p1

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.3p2

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.3p3

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.3p4

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.3p5

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.3p6

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.3p7

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.4

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.4_p1

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.4_p2

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.4p1

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.4p2

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.5

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.5_p1

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.5_p2

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.5p1

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.5p2

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.6

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.7

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.7_p5

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.7p1

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.7p2

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.7p3

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.7p4

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.7p5

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.8

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.8_p1

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.8_p2

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.8_p5

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.8_p7

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.8_p8

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.8_p9

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.8_p12

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.8p1

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.8p2

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.8p3

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.8p4

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.8p5

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.8p6

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.8p7

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.8p8

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.8p9

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.8p10

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.8p11

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.8p12

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.9

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.9_p17

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.9_p18

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.9_p19

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.9_p20

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.9_p21

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.9_p22

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.9p1

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.9p2

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.9p3

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.9p4

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.9p5

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.9p6

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.9p7

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.9p8

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.9p9

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.9p10

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.9p11

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.9p12

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.9p13

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.9p14

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.9p15

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.9p16

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.9p17

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.9p18

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.9p19

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.9p20

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.9p21

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.9p22

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.6.9p23

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.7.0

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.7.1

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.7.2

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.7.2p1

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.7.2p2

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.7.2p3

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.7.2p4

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.7.2p5

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.7.2p6

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.7.2p7

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.7.3b1

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.7.4

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.7.4p1

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.7.4p2

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.7.4p3

Redhat ≫ Fedora Version14

Todd Miller ≫ Sudo Version1.7.4p4

Redhat ≫ Fedora Version14

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.05%	0.137

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	6.9	3.4	10	AV:L/AC:M/Au:N/C:C/I:C/A:C

http://lists.fedoraproject.org/pipermail/package-announce/2011-January/053263.html

http://lists.fedoraproject.org/pipermail/package-announce/2011-January/053341.html

http://secunia.com/advisories/42968

Vendor Advisory

http://www.mandriva.com/security/advisories?name=MDVSA-2011:018

http://www.vupen.com/english/advisories/2011/0195

http://www.vupen.com/english/advisories/2011/0199

https://bugzilla.redhat.com/show_bug.cgi?id=668843

Patch

https://exchange.xforce.ibmcloud.com/vulnerabilities/64965

https://nvd.nist.gov/vuln/detail/CVE-2011-0008

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2011-0008

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2011-0008

EUVD