CVE-2011-0008

NONE EPSS 25.2%
Published Jan 20, 201115y ago · Modified Jun 16, 20262w ago
Find Similar
Published Jan 20, 2011 15y ago
Last Modified Jun 16, 2026 2w ago

Description

A certain Fedora patch for parse.c in sudo before 1.7.4p5-1.fc14 on Fedora 14 does not properly interpret a system group (aka %group) in the sudoers file during authorization decisions for a user who belongs to that group, which allows local users to leverage an applicable sudoers file and gain root privileges via a sudo command. NOTE: this vulnerability exists because of a CVE-2009-0034 regression.

Threat Intelligence

EPSS Exploit Probability
25.2% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Affected Products 115

VendorProductVersionRange
todd_millersudo* ≤1.7.4p5
todd_millersudo1.3.1any
todd_millersudo1.5any
todd_millersudo1.5.2any
todd_millersudo1.5.3any
todd_millersudo1.5.6any
todd_millersudo1.5.7any
todd_millersudo1.5.8any
todd_millersudo1.5.9any
todd_millersudo1.6any
todd_millersudo1.6.1any
todd_millersudo1.6.2any
todd_millersudo1.6.2p1any
todd_millersudo1.6.2p2any
todd_millersudo1.6.2p3any
todd_millersudo1.6.3any
todd_millersudo1.6.3_p1any
todd_millersudo1.6.3_p2any
todd_millersudo1.6.3_p3any
todd_millersudo1.6.3_p4any
todd_millersudo1.6.3_p5any
todd_millersudo1.6.3_p6any
todd_millersudo1.6.3_p7any
todd_millersudo1.6.3p1any
todd_millersudo1.6.3p2any
todd_millersudo1.6.3p3any
todd_millersudo1.6.3p4any
todd_millersudo1.6.3p5any
todd_millersudo1.6.3p6any
todd_millersudo1.6.3p7any
todd_millersudo1.6.4any
todd_millersudo1.6.4_p1any
todd_millersudo1.6.4_p2any
todd_millersudo1.6.4p1any
todd_millersudo1.6.4p2any
todd_millersudo1.6.5any
todd_millersudo1.6.5_p1any
todd_millersudo1.6.5_p2any
todd_millersudo1.6.5p1any
todd_millersudo1.6.5p2any
todd_millersudo1.6.6any
todd_millersudo1.6.7any
todd_millersudo1.6.7_p5any
todd_millersudo1.6.7p1any
todd_millersudo1.6.7p2any
todd_millersudo1.6.7p3any
todd_millersudo1.6.7p4any
todd_millersudo1.6.7p5any
todd_millersudo1.6.8any
todd_millersudo1.6.8_p1any
todd_millersudo1.6.8_p2any
todd_millersudo1.6.8_p5any
todd_millersudo1.6.8_p7any
todd_millersudo1.6.8_p8any
todd_millersudo1.6.8_p9any
todd_millersudo1.6.8_p12any
todd_millersudo1.6.8p1any
todd_millersudo1.6.8p2any
todd_millersudo1.6.8p3any
todd_millersudo1.6.8p4any
todd_millersudo1.6.8p5any
todd_millersudo1.6.8p6any
todd_millersudo1.6.8p7any
todd_millersudo1.6.8p8any
todd_millersudo1.6.8p9any
todd_millersudo1.6.8p10any
todd_millersudo1.6.8p11any
todd_millersudo1.6.8p12any
todd_millersudo1.6.9any
todd_millersudo1.6.9_p17any
todd_millersudo1.6.9_p18any
todd_millersudo1.6.9_p19any
todd_millersudo1.6.9_p20any
todd_millersudo1.6.9_p21any
todd_millersudo1.6.9_p22any
todd_millersudo1.6.9p1any
todd_millersudo1.6.9p2any
todd_millersudo1.6.9p3any
todd_millersudo1.6.9p4any
todd_millersudo1.6.9p5any
todd_millersudo1.6.9p6any
todd_millersudo1.6.9p7any
todd_millersudo1.6.9p8any
todd_millersudo1.6.9p9any
todd_millersudo1.6.9p10any
todd_millersudo1.6.9p11any
todd_millersudo1.6.9p12any
todd_millersudo1.6.9p13any
todd_millersudo1.6.9p14any
todd_millersudo1.6.9p15any
todd_millersudo1.6.9p16any
todd_millersudo1.6.9p17any
todd_millersudo1.6.9p18any
todd_millersudo1.6.9p19any
todd_millersudo1.6.9p20any
todd_millersudo1.6.9p21any
todd_millersudo1.6.9p22any
todd_millersudo1.6.9p23any
todd_millersudo1.7.0any
todd_millersudo1.7.1any
todd_millersudo1.7.2any
todd_millersudo1.7.2p1any
todd_millersudo1.7.2p2any
todd_millersudo1.7.2p3any
todd_millersudo1.7.2p4any
todd_millersudo1.7.2p5any
todd_millersudo1.7.2p6any
todd_millersudo1.7.2p7any
todd_millersudo1.7.3b1any
todd_millersudo1.7.4any
todd_millersudo1.7.4p1any
todd_millersudo1.7.4p2any
todd_millersudo1.7.4p3any
todd_millersudo1.7.4p4any
redhatfedora14any

References 8

Remediation