what you don't know can hurt you
Showing 1 - 1 of 1 RSS Feed

Files

Mandriva Linux Security Advisory 2010-078
Posted Apr 19, 2010
Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory 2010-078 - The command matching functionality in sudo 1.6.8 through 1.7.2p5 does not properly handle when a file in the current working directory has the same name as a pseudo-command in the sudoers file and the PATH contains an entry for., which allows local users to execute arbitrary commands via a Trojan horse executable, as demonstrated using sudoedit, a different vulnerability than CVE-2010-0426. Packages for 2008.0 are provided for Corporate Desktop 2008.0 customers. The updated packages have been patched to correct this issue.

tags | advisory, arbitrary, local, trojan
systems | linux, mandriva
advisories | CVE-2010-1163
MD5 | f4d40abdd936ea4b09edc11985ec3f49
Page 1 of 1
Back1Next

Top Authors In Last 30 Days

Recent News

News RSS Feed
Venmo Transaction Scraped In Privacy Warning To Consumers
Posted Jun 18, 2019

tags | headline, privacy, bank, cybercrime, data loss, fraud, flaw, paypal
Facebook Launches Cryptocurrency To Shake Up Global Finance
Posted Jun 18, 2019

tags | headline, bank, facebook, cryptography
US And Russia Clash Over Power Grid Hack Attacks
Posted Jun 18, 2019

tags | headline, government, usa, russia, cyberwar, scada
Smash GandCrab Tool Released To Decrypt Ransomware
Posted Jun 18, 2019

tags | headline, malware, cybercrime, fraud, cryptography
Hacker Conference Speaker Axed Over Abortion Views
Posted Jun 17, 2019

tags | headline, government, usa, conference
Exposed Database Dumps PII Of 1.6 Million Job Seekers
Posted Jun 17, 2019

tags | headline, privacy, database, data loss
Telegram DDoS Attack Launched Mostly From China
Posted Jun 17, 2019

tags | headline, china, denial of service, social
U.S. Defense, Intelligence Ramps Up Efforts To Insert Malware In Russia's Grid
Posted Jun 17, 2019

tags | headline, government, usa, russia, cyberwar, scada
Evernote Critical Flaw Opened Personal Data Of Millions To Attack
Posted Jun 14, 2019

tags | headline, privacy, flaw, chrome
Spirit Confirms ASCO Industries Cyberattack
Posted Jun 14, 2019

tags | headline, malware, fraud
View More News →
packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close