New Search

Sudo 'runas_default' Local Privilege Escalation Vulnerability

oval:org.mitre.oval:def:7216

sudo 1.6.x before 1.6.9p21 when the runas_default option is used does not properly set group memberships which allows local users to gain privileges via a sudo command.

Family:
unix
Status:
ACCEPTED
Platform(s):
  • VMWare ESX Server 4.0
Class:
vulnerability
Reference(s):
  • CVE-2010-0427
Product(s):