CVE-2006-0151
NONE EPSS 44.9%
Published Jan 9, 200620y ago · Modified Jun 16, 20262w ago
Published Jan 9, 2006 20y ago
Last Modified Jun 16, 2026 2w ago
Description
sudo 1.6.8 and other versions does not clear the PYTHONINSPECT environment variable, which allows limited local users to gain privileges via a Python script, a variant of CVE-2005-4158.
Threat Intelligence
EPSS Exploit Probability
44.9% percentile
Exploit & Patch Status
Public Exploit Known
Patch Available
Affected Products 40
| Vendor | Product | Version | Range |
|---|---|---|---|
| todd_miller | sudo | 1.5.6 | any |
| todd_miller | sudo | 1.5.7 | any |
| todd_miller | sudo | 1.5.8 | any |
| todd_miller | sudo | 1.5.9 | any |
| todd_miller | sudo | 1.6 | any |
| todd_miller | sudo | 1.6.1 | any |
| todd_miller | sudo | 1.6.2 | any |
| todd_miller | sudo | 1.6.3 | any |
| todd_miller | sudo | 1.6.3_p1 | any |
| todd_miller | sudo | 1.6.3_p2 | any |
| todd_miller | sudo | 1.6.3_p3 | any |
| todd_miller | sudo | 1.6.3_p4 | any |
| todd_miller | sudo | 1.6.3_p5 | any |
| todd_miller | sudo | 1.6.3_p6 | any |
| todd_miller | sudo | 1.6.3_p7 | any |
| todd_miller | sudo | 1.6.4 | any |
| todd_miller | sudo | 1.6.4_p1 | any |
| todd_miller | sudo | 1.6.4_p2 | any |
| todd_miller | sudo | 1.6.5 | any |
| todd_miller | sudo | 1.6.5_p1 | any |
| todd_miller | sudo | 1.6.5_p2 | any |
| todd_miller | sudo | 1.6.6 | any |
| todd_miller | sudo | 1.6.7 | any |
| todd_miller | sudo | 1.6.7_p5 | any |
| todd_miller | sudo | 1.6.8 | any |
| todd_miller | sudo | 1.6.8_p1 | any |
| todd_miller | sudo | 1.6.8_p2 | any |
| todd_miller | sudo | 1.6.8_p5 | any |
| todd_miller | sudo | 1.6.8_p7 | any |
| todd_miller | sudo | 1.6.8_p8 | any |
| todd_miller | sudo | 1.6.8_p9 | any |
| todd_miller | sudo | 1.6.8_p12 | any |
| ubuntu | ubuntu_linux | 4.1 | any |
| ubuntu | ubuntu_linux | 4.1 | any |
| ubuntu | ubuntu_linux | 5.04 | any |
| ubuntu | ubuntu_linux | 5.04 | any |
| ubuntu | ubuntu_linux | 5.04 | any |
| ubuntu | ubuntu_linux | 5.10 | any |
| ubuntu | ubuntu_linux | 5.10 | any |
| ubuntu | ubuntu_linux | 5.10 | any |
References 14
- secunia.com http://secunia.com/advisories/18358
- secunia.com http://secunia.com/advisories/18363
- secunia.com http://secunia.com/advisories/18549
- secunia.com http://secunia.com/advisories/18558
- secunia.com http://secunia.com/advisories/18906
- secunia.com http://secunia.com/advisories/19016
- secunia.com http://secunia.com/advisories/21692
- slackware.com http://slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.421822
- debian.org http://www.debian.org/security/2006/dsa-946
- mandriva.com http://www.mandriva.com/security/advisories?name=MDKSA-2006:159
- novell.com http://www.novell.com/linux/security/advisories/2006_02_sr.html
- securityfocus.com http://www.securityfocus.com/bid/16184
- trustix.org http://www.trustix.org/errata/2006/0010
- usn.ubuntu.com https://usn.ubuntu.com/235-2/
Remediation
- secunia.com http://secunia.com/advisories/18363