Test ID:	1.3.6.1.4.1.25623.1.0.67285
Category:	Ubuntu Local Security Checks
Title:	Ubuntu USN-928-1 (sudo)
Summary:	Ubuntu USN-928-1 (sudo)
Description:	The remote host is missing an update to sudo announced via advisory USN-928-1. Details follow: Valerio Costamagna discovered that sudo did not properly validate the path for the 'sudoedit' pseudo-command when the PATH contained only a dot ('.'). If secure_path and ignore_dot were disabled, a local attacker could exploit this to execute arbitrary code as root if sudo was configured to allow the attacker to use sudoedit. By default, secure_path is used and the sudoedit pseudo-command is not used in Ubuntu. This is a different but related issue to CVE-2010-0426. Solution: The problem can be corrected by upgrading your system to the following package versions: Ubuntu 6.06 LTS: sudo 1.6.8p12-1ubuntu6.2 sudo-ldap 1.6.8p12-1ubuntu6.2 Ubuntu 8.04 LTS: sudo 1.6.9p10-1ubuntu3.7 sudo-ldap 1.6.9p10-1ubuntu3.7 Ubuntu 8.10: sudo 1.6.9p17-1ubuntu2.3 sudo-ldap 1.6.9p17-1ubuntu2.3 Ubuntu 9.04: sudo 1.6.9p17-1ubuntu3.2 sudo-ldap 1.6.9p17-1ubuntu3.2 Ubuntu 9.10: sudo 1.7.0-1ubuntu2.2 sudo-ldap 1.7.0-1ubuntu2.2 In general, a standard system upgrade is sufficient to effect the necessary changes. http://www.securityspace.com/smysecure/catid.html?in=USN-928-1 Risk factor : High
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2010-0426 Bugtraq: 20101027 rPSA-2010-0075-1 sudo (Google Search) http://www.securityfocus.com/archive/1/archive/1/514489/100/0/threaded http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=570737 http://www.linuxquestions.org/questions/linux-security-4/the-use-of-sudoedit-command-question-785442/ Debian Security Information: DSA-2006 (Google Search) http://www.debian.org/security/2010/dsa-2006 http://lists.fedoraproject.org/pipermail/package-announce/2010-May/040578.html http://lists.fedoraproject.org/pipermail/package-announce/2010-May/040588.html http://www.gentoo.org/security/en/glsa/glsa-201003-01.xml http://www.mandriva.com/security/advisories?name=MDVSA-2010:049 http://slackware.com/security/viewer.php?l=slackware-security&y=2010&m=slackware-security.577019 SuSE Security Announcement: SUSE-SR:2010:006 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2010-03/msg00004.html http://www.ubuntu.com/usn/USN-905-1 BugTraq ID: 38362 http://www.securityfocus.com/bid/38362 http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:10814 http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:7238 http://securitytracker.com/id?1023658 http://secunia.com/advisories/38659 http://secunia.com/advisories/38915 http://secunia.com/advisories/38795 http://secunia.com/advisories/38803 http://secunia.com/advisories/39399 http://secunia.com/advisories/38762 http://www.vupen.com/english/advisories/2010/0450 http://www.vupen.com/english/advisories/2010/0949
Copyright	Copyright (c) 2010 E-Soft Inc. http://www.securityspace.com

This is only one of 32582 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.

New User Registration Email: UserID: Passwd: Please email me your monthly newsletters, informing the latest services, improvements & surveys. Please email me a vulnerability test announcement whenever a new test is added.     Privacy

Registered User Login   UserID:     Passwd:     Forgot userid or passwd? Email/Userid: