This script is Copyright (C) 2010-2014 Tenable Network Security, Inc.
The remote openSUSE host is missing a security update.
This update fixes two security issues :
- CVE-2010-0427:CVSS v2 Base Score: 6.6 Sudo failed to
properly reset group permissions, when 'runas_default'
option was used. If a local, unprivileged user was
authorized by sudoers file to perform their sudo
commands under default user account, it could lead to
privilege escalation CVE-2010-0426:CVSS v2 Base Score:
6.6 A privilege escalation flaw was found in the way
sudo used to check file paths for pseudocommands. If
local, unprivileged user was authorized by sudoers file
to edit one or more files, it could lead to execution of
arbitrary code, with the privileges of privileged system
See also :
Update the affected sudo package.
Risk factor :
Medium / CVSS Base Score : 6.9
Public Exploit Available : true