Slackware Advisory SSA:2005-172-01 Sudo Network Vulnerability

Summary

The remote host is missing an update as announced via advisory SSA:2005-172-01.

Solution

https://secure1.securityspace.com/smysecure/catid.html?in=SSA:2005-172-01

Insight

New Sudo packages are available for Slackware 8.1, 9.0, 9.1, 10.0, 10.1, and -current to fix a security issue. A race condition could allow a user with Sudo privileges to run arbitrary commands. For more details, see: http://www.courtesan.com/sudo/alerts/path_race.html

Severity

Classification

CVSS Base Score: 6.5
AV:N/AC:L/Au:S/C:P/I:P/A:P

Related Vulnerabilities

Slackware Advisory SSA:2006-123-02 firefox
Slackware Advisory SSA:2006-357-02 mozilla-thunderbird
Slackware Advisory SSA:2006-129-02 mysql
Slackware Advisory SSA:2007-178-01 gd
Slackware Advisory SSA:2005-269-01 Mozilla/Firefox

Slackware Advisory SSA:2005-172-01 sudo

Take action and discover your vulnerabilities