|
Vulnerability Assessment & Network Security Forums |
|||||||||
If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important. If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery. Home >> Browse Vulnerability Assessment Database >> Slackware Local Security Checks >> SSA- sudo upgrade fixes a potential vulnerability Vulnerability Assessment Details
|
SSA- sudo upgrade fixes a potential vulnerability |
||
SSA sudo upgrade fixes a potential vulnerability Detailed Explanation for this Vulnerability Assessment New sudo packages are available to fix a security problem which may permit users to become root, or to execute arbitrary code as root. Here's the information from the Slackware 8.0 ChangeLog: ---------------------------- Thu Apr 25 12:00:50 PDT 2002 patches/packages/sudo.tgz: Upgraded to sudo-1.6.6. This version of sudo fixes a security problem whereby a local user may gain root access through corruption of the heap (Off-By-Five). This issue was discovered by Global InterSec LLC, and more information may be found on their web site: http://www.globalintersec.com/adv/sudo-2002041701.txt The discussion on the site indicates that this problem may only be exploitable on systems that use PAM, which Slackware does not use. However, in the absence of proof, it still seems prudent to upgrade sudo immediately. (* Security fix *) ---------------------------- Networks Security ID: Vulnerability Assessment Copyright: This script is Copyright (C) 2005 Michel Arboi |
||
Cables, Connectors |
Vintage Digital Equipment DEC DECTAPE + 1 Extra Case (That's empty)
$74.99
Vintage DEC Digital Toshiba XM-4101B 4X SCSI CD-ROM drive
$35.00
$75.00
Vintage Digital DEC TK50 5.25" CompacTape tape drive untested
$125.00
VINTAGE DIGITAL EQUIPMENTS DEC STORAGE EXPANSION MODEL SZ12B-XA
$250.00
Vintage DEC MicroVAX 3400 MAYFAIRII CPU Board ~ 50-17386-01
$89.85
Vintage Collector Computer board with Texas Instruments ICs 74S240N DEC PDP?
$12.99
$50.00
Vintage DEC Digital Equipment Corp PDP 11/40 G114 16K SENSE/INHIBIT (B10)
$269.99
Vintage DEC/The Redac mini cabinet front panel Digital Equipment Corp. 19"
$269.99
|
||
No Discussions have been posted on this vulnerability. |