FreeBSD : sudo -- privilege escalation with bash scripts (bdd1537b-354c-11d9-a9e7-0001020eed82)
High Nessus Plugin ID 36239
SynopsisThe remote FreeBSD host is missing a security-related update.
DescriptionA Sudo Security Alerts reports :
A flaw in exists in sudo's environment sanitizing prior to sudo version 1.6.8p2 that could allow a malicious user with permission to run a shell script that utilized the bash shell to run arbitrary commands.
SolutionUpdate the affected package.