CVE-2010-1163

NONE EPSS 32.1%
Published Apr 16, 201016y ago · Modified Jun 16, 20262w ago
Find Similar
Published Apr 16, 2010 16y ago
Last Modified Jun 16, 2026 2w ago

Description

The command matching functionality in sudo 1.6.8 through 1.7.2p5 does not properly handle when a file in the current working directory has the same name as a pseudo-command in the sudoers file and the PATH contains an entry for ".", which allows local users to execute arbitrary commands via a Trojan horse executable, as demonstrated using sudoedit, a different vulnerability than CVE-2010-0426.

Threat Intelligence

EPSS Exploit Probability
32.1% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

Weaknesses 1

CWE-20 Improper Input Validation Validation

Affected Products 21

VendorProductVersionRange
todd_millersudo1.6.8any
todd_millersudo1.6.8_p1any
todd_millersudo1.6.8_p2any
todd_millersudo1.6.8_p5any
todd_millersudo1.6.8_p7any
todd_millersudo1.6.8_p8any
todd_millersudo1.6.8_p9any
todd_millersudo1.6.8_p12any
todd_millersudo1.6.8p7any
todd_millersudo1.6.9_p17any
todd_millersudo1.6.9_p18any
todd_millersudo1.6.9_p19any
todd_millersudo1.6.9_p20any
todd_millersudo1.6.9_p21any
todd_millersudo1.6.9_p22any
todd_millersudo1.7.0any
todd_millersudo1.7.1any
todd_millersudo1.7.2p1any
todd_millersudo1.7.2p2any
todd_millersudo1.7.2p3any
todd_millersudo1.7.2p4any

References 28

  • lists.fedoraproject.org http://lists.fedoraproject.org/pipermail/package-announce/2010-April/039986.html
  • lists.opensuse.org http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html
  • secunia.com http://secunia.com/advisories/39384
    Vendor Advisory
  • secunia.com http://secunia.com/advisories/39399
  • secunia.com http://secunia.com/advisories/39474
    Vendor Advisory
  • secunia.com http://secunia.com/advisories/39543
  • secunia.com http://secunia.com/advisories/43068
  • slackware.com http://slackware.com/security/viewer.php?l=slackware-security&y=2010&m=slackware-security.577019
  • wiki.rpath.com http://wiki.rpath.com/Advisories:rPSA-2010-0075
  • mandriva.com http://www.mandriva.com/security/advisories?name=MDVSA-2010:078
  • osvdb.org http://www.osvdb.org/63878
  • redhat.com http://www.redhat.com/support/errata/RHSA-2010-0361.html
  • securityfocus.com http://www.securityfocus.com/archive/1/510827/100/0/threaded
  • securityfocus.com http://www.securityfocus.com/archive/1/510846/100/0/threaded
  • securityfocus.com http://www.securityfocus.com/archive/1/510880/100/0/threaded
  • securityfocus.com http://www.securityfocus.com/archive/1/514489/100/0/threaded
  • securityfocus.com http://www.securityfocus.com/bid/39468
  • sudo.ws http://www.sudo.ws/sudo/alerts/sudoedit_escalate2.html
  • ubuntu.com http://www.ubuntu.com/usn/USN-928-1
  • vupen.com http://www.vupen.com/english/advisories/2010/0881
    Vendor Advisory
  • vupen.com http://www.vupen.com/english/advisories/2010/0895
    Vendor Advisory
  • vupen.com http://www.vupen.com/english/advisories/2010/0904
  • vupen.com http://www.vupen.com/english/advisories/2010/0949
  • vupen.com http://www.vupen.com/english/advisories/2010/0956
  • vupen.com http://www.vupen.com/english/advisories/2010/1019
  • vupen.com http://www.vupen.com/english/advisories/2011/0212
  • exchange.xforce.ibmcloud.com https://exchange.xforce.ibmcloud.com/vulnerabilities/57836
  • oval.cisecurity.org https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9382

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.