FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

sudo -- local race condition vulnerability

Affected packages
sudo < 1.6.8.9

Details

VuXML ID 3bf157fa-e1c6-11d9-b875-0001020eed82
Discovery 2005-06-20
Entry 2005-06-20
Modified 2005-11-14

Todd C. Miller reports:

A race condition in Sudo's command pathname handling prior to Sudo version 1.6.8p9 that could allow a user with Sudo privileges to run arbitrary commands.

Exploitation of the bug requires that the user be allowed to run one or more commands via Sudo and be able to create symbolic links in the filesystem. Furthermore, a sudoers entry giving another user access to the ALL pseudo-command must follow the user's sudoers entry for the race to exist.

References

Bugtraq ID 13993
CVE Name CVE-2005-1993
Message 200506201424.j5KEOhQI024645@xerxes.courtesan.com