CVE-2009-0034
30.01.2009, 19:30
parse.c in sudo 1.6.9p17 through 1.6.9p19 does not properly interpret a system group (aka %group) in the sudoers file during authorization decisions for a user who belongs to that group, which allows local users to leverage an applicable sudoers file and gain root privileges via a sudo command.Enginsight
Vendor | Product | Version |
---|---|---|
gratisoft | sudo | 1.6.9:p17 |
gratisoft | sudo | 1.6.9:p18 |
gratisoft | sudo | 1.6.9:p19 |
vmware | esx | 4.0 |
𝑥
= Vulnerable software versions

Debian Releases

Ubuntu Releases
References