Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
3.3
CVE-2014-9680
- EPSS 0.38%
- Published 24.04.2017 06:59:00
- Last modified 20.04.2025 01:37:25
sudo before 1.8.12 does not ensure that the TZ environment variable is associated with a zoneinfo file, which allows local users to open arbitrary files for read access (but not view file contents) by running a program within an sudo session, as demo...
7.2
CVE-2015-5602
- EPSS 6.1%
- Published 17.11.2015 15:59:10
- Last modified 12.04.2025 10:46:40
sudoedit in Sudo before 1.8.15 allows local users to gain privileges via a symlink attack on a file whose full path is defined using multiple wildcards in /etc/sudoers, as demonstrated by "/home/*/*/file.txt."
7.8
CVE-2002-0184
- EPSS 0.21%
- Published 16.05.2002 04:00:00
- Last modified 03.04.2025 01:03:51
Sudo before 1.6.6 contains an off-by-one error that can result in a heap-based buffer overflow that may allow local users to gain root privileges via special characters in the -p (prompt) argument, which are not properly expanded.