New Sudo Vulnerability Could Allow Attackers to Obtain Full Root Privileges

3 February 2020

New Sudo Vulnerability Could Allow Attackers to Obtain Full Root Privileges Feb 03, 2020, 10:00 (0 Talkback[s]) (Other stories by Marius Nestor) It would appear that there is a vulnerability (CVE-2019-18634) in the Sudo package, a program that allows users to run programs in a UNIX system with the security privileges of another user, which could allow an unprivileged user to obtain full root privileges. The vulnerability affects Sudo versions prior to version 1.8.26, from 1.7.1 to 1.8.25p1, but only if the pwfeedback option was set in the /etc/sudoers file by the system administrator.

Read full article on Linux Today

Date:

3 February 2020

Categorie(s):

NEWS

Tag(s):

Full, New, Privileges, Root, Security Pro

Cops cuff man for allegedly framing colleague with AI-generated hate speech clip25 April 2024
Ring dinged for $5.6M after, among other claims, rogue insider spied on ‘pretty girls’25 April 2024
After a 19-month saga, Broadcom finally patches Brocade SANnav bugs25 April 2024
Navigating the cyber seas: Clarity, compliance, and unified endpoint management 25 April 2024
Dropzone AI nabs $16.85M for its automated breach investigation platform25 April 2024