National Vulnerability Database

National Vulnerability Database

National Vulnerability
Database

CVE-2010-1646 Detail

Description

The secure path feature in env.c in sudo 1.3.1 through 1.6.9p22 and 1.7.0 through 1.7.2p6 does not properly handle an environment that contains multiple PATH variables, which might allow local users to gain privileges via a crafted value of the last PATH variable.

Source:  MITRE      Last Modified:  06/07/2010

Quick Info

CVE Dictionary Entry:
CVE-2010-1646
Original release date:
06/07/2010
Last revised:
09/18/2017
Source:
US-CERT/NIST

Impact

CVSS Severity (version 2.0):
CVSS v2 Base Score:
6.2 MEDIUM
Vector:
(AV:L/AC:H/Au:N/C:C/I:C/A:C) (legend)
Impact Subscore:
10.0
Exploitability Subscore:
1.9
CVSS Version 2 Metrics:
Access Vector:
Locally exploitable
Access Complexity:
High
Authentication:
Not required to exploit
Impact Type:
Allows unauthorized disclosure of information; Allows unauthorized modification; Allows disruption of service

References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to nvd@nist.gov.

Hyperlink Resource Type Source Name
http://lists.fedoraproject.org/pipermail/package-announce/2010-June/042838.html External Source FEDORA FEDORA-2010-9402
http://lists.fedoraproject.org/pipermail/package-announce/2010-June/043012.html External Source FEDORA FEDORA-2010-9417
http://lists.fedoraproject.org/pipermail/package-announce/2010-June/043026.html External Source FEDORA FEDORA-2010-9415
http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00006.html External Source SUSE SUSE-SR:2011:002
http://security.gentoo.org/glsa/glsa-201009-03.xml External Source GENTOO GLSA-201009-03
http://wiki.rpath.com/Advisories:rPSA-2010-0075 External Source CONFIRM http://wiki.rpath.com/Advisories:rPSA-2010-0075
http://www.debian.org/security/2010/dsa-2062 External Source DEBIAN DSA-2062
http://www.mandriva.com/security/advisories?name=MDVSA-2010:118 External Source MANDRIVA MDVSA-2010:118
http://www.redhat.com/support/errata/RHSA-2010-0475.html External Source REDHAT RHSA-2010:0475
http://www.securityfocus.com/archive/1/archive/1/514489/100/0/threaded External Source BUGTRAQ 20101027 rPSA-2010-0075-1 sudo
http://www.securityfocus.com/bid/40538 External Source BID 40538
http://www.securitytracker.com/id?1024101 External Source SECTRACK 1024101
http://www.sudo.ws/repos/sudo/rev/3057fde43cf0 Exploit; Patch External Source CONFIRM http://www.sudo.ws/repos/sudo/rev/3057fde43cf0
http://www.sudo.ws/repos/sudo/rev/a09c6812eaec Exploit; Patch External Source CONFIRM http://www.sudo.ws/repos/sudo/rev/a09c6812eaec
http://www.sudo.ws/sudo/alerts/secure_path.html Vendor Advisory External Source CONFIRM http://www.sudo.ws/sudo/alerts/secure_path.html
http://www.vupen.com/english/advisories/2010/1452 External Source VUPEN ADV-2010-1452
http://www.vupen.com/english/advisories/2010/1478 External Source VUPEN ADV-2010-1478
http://www.vupen.com/english/advisories/2010/1518 External Source VUPEN ADV-2010-1518
http://www.vupen.com/english/advisories/2010/1519 External Source VUPEN ADV-2010-1519
http://www.vupen.com/english/advisories/2011/0212 External Source VUPEN ADV-2011-0212
https://bugzilla.redhat.com/show_bug.cgi?id=598154 External Source CONFIRM https://bugzilla.redhat.com/show_bug.cgi?id=598154
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10580 External Source OVAL oval:org.mitre.oval:def:10580
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7338 External Source OVAL oval:org.mitre.oval:def:7338

References to Check Content

Identifier:
oval:org.mitre.oval:def:10580
Check System:
http://oval.mitre.org/XMLSchema/oval-definitions-5
Hyperlink:
http://oval.mitre.org/repository/data/DownloadDefinition?id=oval:org.mitre.oval:def:10580
Identifier:
oval:org.mitre.oval:def:7338
Check System:
http://oval.mitre.org/XMLSchema/oval-definitions-5
Hyperlink:
http://oval.mitre.org/repository/data/DownloadDefinition?id=oval:org.mitre.oval:def:7338

Technical Details

Vulnerability Type (View All)

  • Permissions, Privileges, and Access Control (CWE-264)

Vulnerable software and versions Switch to CPE 2.2

Configuration 1
OR
cpe:2.3:a:todd_miller:sudo:1.3.1:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.6:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.6.1:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.6.2:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.6.2p1:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.6.2p2:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.6.2p3:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.6.3:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.6.3p1:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.6.3p2:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.6.3p3:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.6.3p4:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.6.3p5:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.6.3p6:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.6.3p7:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.6.4:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.6.4p1:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.6.4p2:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.6.5:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.6.5p1:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.6.5p2:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.6.6:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.6.7:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.6.7p1:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.6.7p2:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.6.7p3:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.6.7p4:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.6.7p5:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.6.8:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.6.8p1:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.6.8p2:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.6.8p3:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.6.8p4:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.6.8p5:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.6.8p6:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.6.8p7:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.6.8p8:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.6.8p9:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.6.8p10:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.6.8p11:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.6.8p12:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.6.9:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.6.9p1:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.6.9p2:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.6.9p3:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.6.9p4:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.6.9p5:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.6.9p6:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.6.9p7:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.6.9p8:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.6.9p9:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.6.9p10:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.6.9p11:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.6.9p12:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.6.9p13:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.6.9p14:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.6.9p15:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.6.9p16:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.6.9p17:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.6.9p18:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.6.9p19:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.6.9p20:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.6.9p21:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.6.9p22:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.7.0:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.7.1:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.7.2:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.7.2p1:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.7.2p2:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.7.2p3:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.7.2p4:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.7.2p5:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.7.2p6:*:*:*:*:*:*:*
cpe:2.3:a:todd_miller:sudo:1.7.2p7:*:*:*:*:*:*:*

Denotes Vulnerable Software
Are we missing a CPE here? Please let us know.

Change History 2 change records found - show changes