CVE-2009-0034

medium
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

parse.c in sudo 1.6.9p17 through 1.6.9p19 does not properly interpret a system group (aka %group) in the sudoers file during authorization decisions for a user who belongs to that group, which allows local users to leverage an applicable sudoers file and gain root privileges via a sudo command.

References

http://lists.vmware.com/pipermail/security-announce/2009/000060.html

http://osvdb.org/51736

http://secunia.com/advisories/33753

http://secunia.com/advisories/33840

http://secunia.com/advisories/33885

http://secunia.com/advisories/35766

http://wiki.rpath.com/Advisories:rPSA-2009-0021

http://www.gratisoft.us/bugzilla/show_bug.cgi?id=327

http://www.mandriva.com/security/advisories?name=MDVSA-2009:033

http://www.redhat.com/support/errata/RHSA-2009-0267.html

http://www.securityfocus.com/archive/1/500546/100/0/threaded

http://www.securityfocus.com/archive/1/504849/100/0/threaded

http://www.securityfocus.com/bid/33517

http://www.securitytracker.com/id?1021688

http://www.sudo.ws/cgi-bin/cvsweb/sudo/parse.c.diff?r1=1.160.2.21&r2=1.160.2.22&f=h

http://www.vmware.com/security/advisories/VMSA-2009-0009.html

http://www.vupen.com/english/advisories/2009/1865

https://bugzilla.novell.com/show_bug.cgi?id=468923

https://issues.rpath.com/browse/RPL-2954

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10856

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6462

Details

Source: MITRE

Published: 2009-01-30

Updated: 2018-10-11

Type: CWE-264

Risk Information

CVSS v2

Base Score: 6.9

Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C

Impact Score: 10

Exploitability Score: 3.4

Severity: MEDIUM

Tenable Plugins

View all (12 total)

IDNameProductFamilySeverity
89115VMware ESX Multiple Vulnerabilities (VMSA-2009-0009) (remote check)NessusMisc.
high
67801Oracle Linux 5 : sudo (ELSA-2009-0267)NessusOracle Linux Local Security Checks
medium
60529Scientific Linux Security Update : sudo on SL5.x i386/x86_64NessusScientific Linux Local Security Checks
medium
52011VMSA-2009-0009 : ESX Service Console updates for udev, sudo, and curlNessusVMware ESX Local Security Checks
high
51656Fedora 13 : sudo-1.7.4p5-1.fc13 (2011-0455)NessusFedora Local Security Checks
medium
51566Fedora 14 : sudo-1.7.4p5-1.fc14 (2011-0470)NessusFedora Local Security Checks
medium
38137Mandriva Linux Security Advisory : sudo (MDVSA-2009:033)NessusMandriva Local Security Checks
medium
38070Ubuntu 8.04 LTS / 8.10 : sudo vulnerability (USN-722-1)NessusUbuntu Local Security Checks
medium
36971Fedora 10 : sudo-1.6.9p17-5.fc10 (2009-1074)NessusFedora Local Security Checks
medium
35614GLSA-200902-01 : sudo: Privilege escalationNessusGentoo Local Security Checks
medium
35613FreeBSD : sudo -- certain authorized users could run commands as any user (13d6d997-f455-11dd-8516-001b77d09812)NessusFreeBSD Local Security Checks
medium
35605RHEL 5 : sudo (RHSA-2009:0267)NessusRed Hat Local Security Checks
medium