CVE-2010-0427

sudo 1.6.x before 1.6.9p21, when the runas_default option is used, does not properly set group memberships, which allows local users to gain privileges via a sudo command.
Severity
UNKNOWN
AV:L/AC:M/Au:N/C:P/I:P/A:P
Atk. Vector
LOCAL
Atk. Complexity
MEDIUM
Base Score
CVSS 3.x
EPSS Score
Percentile: 10%
VendorProductVersion
todd_millersudo
1.6
todd_millersudo
1.6.1
todd_millersudo
1.6.2
todd_millersudo
1.6.3
todd_millersudo
1.6.3_p1
todd_millersudo
1.6.3_p2
todd_millersudo
1.6.3_p3
todd_millersudo
1.6.3_p4
todd_millersudo
1.6.3_p5
todd_millersudo
1.6.3_p6
todd_millersudo
1.6.3_p7
todd_millersudo
1.6.4_p1
todd_millersudo
1.6.4_p2
todd_millersudo
1.6.5
todd_millersudo
1.6.5_p1
todd_millersudo
1.6.5_p2
todd_millersudo
1.6.6
todd_millersudo
1.6.7
todd_millersudo
1.6.7_p5
todd_millersudo
1.6.8
todd_millersudo
1.6.8_p1
todd_millersudo
1.6.8_p5
todd_millersudo
1.6.8_p8
todd_millersudo
1.6.8_p9
todd_millersudo
1.6.8_p12
todd_millersudo
1.6.9_p17
todd_millersudo
1.6.9_p18
todd_millersudo
1.6.9_p19
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
sudo
bullseye (security)
1.9.5p2-3+deb11u1
fixed
bullseye
1.9.5p2-3+deb11u1
fixed
bookworm
1.9.13p3-1+deb12u1
fixed
sid
1.9.15p5-3
fixed
trixie
1.9.15p5-3
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
sudo
karmic
not-affected
jaunty
Fixed 1.6.9p17-1ubuntu3.1
released
intrepid
Fixed 1.6.9p17-1ubuntu2.2
released
hardy
Fixed 1.6.9p10-1ubuntu3.6
released
dapper
not-affected
Common Weakness Enumeration