Debian Security Advisory DSA 101-1 (sudo) Network Vulnerability

Summary

The remote host is missing an update to sudo announced via advisory DSA 101-1.

Solution

https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20101-1

Insight

Sebastian Krahmer from SuSE found a vulnerability in sudo which could easily lead into a local root exploit. This problem has been fixed in upstream version 1.6.4 as well as in version 1.6.2p2-2.1 for the stable release of Debian GNU/Linux. We recommend that you upgrade your sudo packages immediately.

Severity

Classification

CVE CVE-2002-0043
CVSS Base Score: 7.2
AV:L/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Debian Security Advisory DSA 028-1 (man-db)
Debian Security Advisory DSA 1017-1 (kernel-source-2.6.8)
Debian Security Advisory DSA 1037-1 (zgv)
Debian Security Advisory DSA 107-1 (jgroff)
Debian Security Advisory DSA 029-1 (proftpd)

Take action and discover your vulnerabilities