Vulnerability Details CVE-2001-0279
Buffer overflow in sudo earlier than 1.6.3p6 allows local users to gain root privileges.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 44.4%
CVSS Severity
CVSS v2 Score 7.2
References
- http://archives.neohapsis.com/archives/bugtraq/2001-02/0414.html
- http://archives.neohapsis.com/archives/bugtraq/2001-02/0427.html
- http://archives.neohapsis.com/archives/bugtraq/2001-02/0437.html
- http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000381
- http://www.debian.org/security/2001/dsa-031
- http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-024.php3
- http://www.redhat.com/support/errata/RHSA-2001-018.html
- http://www.redhat.com/support/errata/RHSA-2001-019.html
- http://archives.neohapsis.com/archives/bugtraq/2001-02/0414.html
- http://archives.neohapsis.com/archives/bugtraq/2001-02/0427.html
- http://archives.neohapsis.com/archives/bugtraq/2001-02/0437.html
- http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000381
- http://www.debian.org/security/2001/dsa-031
- http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-024.php3
- http://www.redhat.com/support/errata/RHSA-2001-018.html
- http://www.redhat.com/support/errata/RHSA-2001-019.html
Products affected by CVE-2001-0279
-
cpe:2.3:o:debian:debian_linux:2.2
-
cpe:2.3:o:mandrakesoft:mandrake_linux:7.1
-
cpe:2.3:o:mandrakesoft:mandrake_linux:7.2
-
cpe:2.3:o:mandrakesoft:mandrake_linux_corporate_server:1.0.1