CVE-2002-0043 - OpenCVE

sudo 1.6.0 through 1.6.3p7 does not properly clear the environment before calling the mail program, which could allow local users to gain root privileges by modifying environment variables and changing how the mail program is invoked.

No CVSS v3.1

No CVSS v3.0

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

AV:L/AC:L/Au:N/C:C/I:C/A:C

Vendors & Products
CPE Configurations

Vendors	Products
Todd Miller	Sudo

Configuration 1 [-]

OR	cpe:2.3:a:todd_miller:sudo:1.6:::::::*
	cpe:2.3:a:todd_miller:sudo:1.6.1:::::::*
	cpe:2.3:a:todd_miller:sudo:1.6.2:::::::*
	cpe:2.3:a:todd_miller:sudo:1.6.3:::::::*
	cpe:2.3:a:todd_miller:sudo:1.6.3_p1:::::::*
	cpe:2.3:a:todd_miller:sudo:1.6.3_p2:::::::*
	cpe:2.3:a:todd_miller:sudo:1.6.3_p3:::::::*
	cpe:2.3:a:todd_miller:sudo:1.6.3_p4:::::::*
	cpe:2.3:a:todd_miller:sudo:1.6.3_p5:::::::*
	cpe:2.3:a:todd_miller:sudo:1.6.3_p6:::::::*
	cpe:2.3:a:todd_miller:sudo:1.6.3_p7:::::::*

References

Link	Resource
ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SN-02%3A06.asc
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000451
http://frontal2.mandriva.com/security/advisories?name=MDKSA-2002:003
http://marc.info/?l=bugtraq&m=101120193627756&w=2
http://www.debian.org/security/2002/dsa-101
http://www.novell.com/linux/security/advisories/2002_002_sudo_txt.html
http://www.redhat.com/support/errata/RHSA-2002-011.html
http://www.redhat.com/support/errata/RHSA-2002-013.html	Patch Vendor Advisory
http://www.securityfocus.com/advisories/3800
http://www.securityfocus.com/archive/1/250168	Vendor Advisory
http://www.securityfocus.com/bid/3871
http://www.sudo.ws/sudo/alerts/postfix.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/7891

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2002-06-25T04:00:00

Updated: 2002-06-16T00:00:00

Reserved: 2002-01-22T00:00:00

Link: CVE-2002-0043

JSON object: View

NVD Information

Status : Modified

Published: 2002-01-31T05:00:00.000

Modified: 2018-05-03T01:29:15.067

Link: CVE-2002-0043

JSON object: View

Redhat Information

No data.

CWE

NVD-CWE-Other

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2002-01-14T00:00:00", "descriptions": [{"lang": "en", "value": "sudo 1.6.0 through 1.6.3p7 does not properly clear the environment before calling the mail program, which could allow local users to gain root privileges by modifying environment variables and changing how the mail program is invoked."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2002-06-16T00:00:00", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "FreeBSD-SA-02:06", "tags": ["vendor-advisory", "x_refsource_FREEBSD"], "url": "ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SN-02%3A06.asc"}, {"name": "RHSA-2002:013", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://www.redhat.com/support/errata/RHSA-2002-013.html"}, {"name": "sudo-unclean-env-root(7891)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/7891"}, {"name": "IMNX-2002-70-001-01", "tags": ["vendor-advisory", "x_refsource_IMMUNIX"], "url": "http://www.securityfocus.com/advisories/3800"}, {"name": "3871", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/3871"}, {"name": "20020114 Sudo version 1.6.4 now available (fwd)", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/250168"}, {"name": "20020116 Sudo +Postfix Exploit", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://marc.info/?l=bugtraq&m=101120193627756&w=2"}, {"tags": ["x_refsource_MISC"], "url": "http://www.sudo.ws/sudo/alerts/postfix.html"}, {"name": "SuSE-SA:2002:002", "tags": ["vendor-advisory", "x_refsource_SUSE"], "url": "http://www.novell.com/linux/security/advisories/2002_002_sudo_txt.html"}, {"name": "MDKSA-2002:003", "tags": ["vendor-advisory", "x_refsource_MANDRAKE"], "url": "http://frontal2.mandriva.com/security/advisories?name=MDKSA-2002:003"}, {"name": "DSA-101", "tags": ["vendor-advisory", "x_refsource_DEBIAN"], "url": "http://www.debian.org/security/2002/dsa-101"}, {"name": "RHSA-2002:011", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://www.redhat.com/support/errata/RHSA-2002-011.html"}, {"name": "CLA-2002:451", "tags": ["vendor-advisory", "x_refsource_CONECTIVA"], "url": "http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000451"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2002-0043", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "sudo 1.6.0 through 1.6.3p7 does not properly clear the environment before calling the mail program, which could allow local users to gain root privileges by modifying environment variables and changing how the mail program is invoked."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "FreeBSD-SA-02:06", "refsource": "FREEBSD", "url": "ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SN-02%3A06.asc"}, {"name": "RHSA-2002:013", "refsource": "REDHAT", "url": "http://www.redhat.com/support/errata/RHSA-2002-013.html"}, {"name": "sudo-unclean-env-root(7891)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/7891"}, {"name": "IMNX-2002-70-001-01", "refsource": "IMMUNIX", "url": "http://www.securityfocus.com/advisories/3800"}, {"name": "3871", "refsource": "BID", "url": "http://www.securityfocus.com/bid/3871"}, {"name": "20020114 Sudo version 1.6.4 now available (fwd)", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/250168"}, {"name": "20020116 Sudo +Postfix Exploit", "refsource": "BUGTRAQ", "url": "http://marc.info/?l=bugtraq&m=101120193627756&w=2"}, {"name": "http://www.sudo.ws/sudo/alerts/postfix.html", "refsource": "MISC", "url": "http://www.sudo.ws/sudo/alerts/postfix.html"}, {"name": "SuSE-SA:2002:002", "refsource": "SUSE", "url": "http://www.novell.com/linux/security/advisories/2002_002_sudo_txt.html"}, {"name": "MDKSA-2002:003", "refsource": "MANDRAKE", "url": "http://frontal2.mandriva.com/security/advisories?name=MDKSA-2002:003"}, {"name": "DSA-101", "refsource": "DEBIAN", "url": "http://www.debian.org/security/2002/dsa-101"}, {"name": "RHSA-2002:011", "refsource": "REDHAT", "url": "http://www.redhat.com/support/errata/RHSA-2002-011.html"}, {"name": "CLA-2002:451", "refsource": "CONECTIVA", "url": "http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000451"}]}}}}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2002-0043", "datePublished": "2002-06-25T04:00:00", "dateReserved": "2002-01-22T00:00:00", "dateUpdated": "2002-06-16T00:00:00", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:todd_miller:sudo:1.6:*:*:*:*:*:*:*", "matchCriteriaId": "976B5923-1BCC-4DE6-A904-930DD833B937", "vulnerable": true}, {"criteria": "cpe:2.3:a:todd_miller:sudo:1.6.1:*:*:*:*:*:*:*", "matchCriteriaId": "D5452DF1-0270-452D-90EB-45E9A084B94C", "vulnerable": true}, {"criteria": "cpe:2.3:a:todd_miller:sudo:1.6.2:*:*:*:*:*:*:*", "matchCriteriaId": "CBFD12E6-F92E-4371-ADA7-BCD41E4C9014", "vulnerable": true}, {"criteria": "cpe:2.3:a:todd_miller:sudo:1.6.3:*:*:*:*:*:*:*", "matchCriteriaId": "67FDF4FB-06FA-4A10-A3CF-F52169BC8072", "vulnerable": true}, {"criteria": "cpe:2.3:a:todd_miller:sudo:1.6.3_p1:*:*:*:*:*:*:*", "matchCriteriaId": "A5B29018-B495-482A-8FF7-66821A178F9A", "vulnerable": true}, {"criteria": "cpe:2.3:a:todd_miller:sudo:1.6.3_p2:*:*:*:*:*:*:*", "matchCriteriaId": "38718561-70C7-4E0D-9313-87A5E82ED338", "vulnerable": true}, {"criteria": "cpe:2.3:a:todd_miller:sudo:1.6.3_p3:*:*:*:*:*:*:*", "matchCriteriaId": "D057064A-9B34-4224-97BA-4D5840A92BE0", "vulnerable": true}, {"criteria": "cpe:2.3:a:todd_miller:sudo:1.6.3_p4:*:*:*:*:*:*:*", "matchCriteriaId": "E3C297DC-69B1-4BE6-A5EF-D320BD0CA968", "vulnerable": true}, {"criteria": "cpe:2.3:a:todd_miller:sudo:1.6.3_p5:*:*:*:*:*:*:*", "matchCriteriaId": "2F4C1FFB-F6AA-4DED-9C54-DCB274F59A44", "vulnerable": true}, {"criteria": "cpe:2.3:a:todd_miller:sudo:1.6.3_p6:*:*:*:*:*:*:*", "matchCriteriaId": "338A92AC-92D2-40BF-9FAC-884AF6F74D55", "vulnerable": true}, {"criteria": "cpe:2.3:a:todd_miller:sudo:1.6.3_p7:*:*:*:*:*:*:*", "matchCriteriaId": "26DB5610-03CE-425E-8855-70D5787029FE", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "sudo 1.6.0 through 1.6.3p7 does not properly clear the environment before calling the mail program, which could allow local users to gain root privileges by modifying environment variables and changing how the mail program is invoked."}, {"lang": "es", "value": "sudo 1.6.0 hasta 1.6.3p7 no limpia adecuadamente todo el entorno antes de llamar al programa de correo, lo cual podr\u00eda permitir que usuarios locales obtengan privilegios de root (modificando las variables de entorno y cambiando el modo en que el programa es invocado)."}], "id": "CVE-2002-0043", "lastModified": "2018-05-03T01:29:15.067", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.2, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 10.0, "obtainAllPrivilege": true, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2002-01-31T05:00:00.000", "references": [{"source": "cve@mitre.org", "url": "ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SN-02%3A06.asc"}, {"source": "cve@mitre.org", "url": "http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000451"}, {"source": "cve@mitre.org", "url": "http://frontal2.mandriva.com/security/advisories?name=MDKSA-2002:003"}, {"source": "cve@mitre.org", "url": "http://marc.info/?l=bugtraq&m=101120193627756&w=2"}, {"source": "cve@mitre.org", "url": "http://www.debian.org/security/2002/dsa-101"}, {"source": "cve@mitre.org", "url": "http://www.novell.com/linux/security/advisories/2002_002_sudo_txt.html"}, {"source": "cve@mitre.org", "url": "http://www.redhat.com/support/errata/RHSA-2002-011.html"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.redhat.com/support/errata/RHSA-2002-013.html"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/advisories/3800"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://www.securityfocus.com/archive/1/250168"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/3871"}, {"source": "cve@mitre.org", "url": "http://www.sudo.ws/sudo/alerts/postfix.html"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/7891"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}