CVE-2017-1000368 sudo: Privilege escalation via improper get_process_ttyname parsing

Unitrends
Backup
Configure

CVE ID

CVE-2017-1000368

DESCRIPTION

It was found that the original fix for CVE-2017-1000367 was incomplete. A flaw
was found in the way sudo parsed tty information from the process status file
in the proc filesystem. A local user with privileges to execute commands via
sudo could use this flaw to escalate their privileges to root.

CVSS3 Base Score 7.3
Related CVEs: CVE-2017-1000367

RESOLUTION

Fixed in latest Unitrends security update with
sudo-1.8.6p3-29.el6_9

LINK TO ADVISORIES

https://nvd.nist.gov/vuln/detail/CVE-2017-1000368 https://access.redhat.com/security/cve/cve-2017-1000368 https://access.redhat.com/security/cve/cve-2017-1000367

Was this article helpful?

0 out of 0 found this helpful

Have more questions? Contact us

Browse this section

Remove ISCSI sessions using the Linux command line
Windows Volume Shadow copy Services (VSS) Problem Determination
OpenVPN - How to remove the OpenVPN configuration from an appliance
Volume Shadow Copy Service Errors
Error: Virtual Machine could not be started because the hypervisor is not running
How do I change the sendmail 'from' address and domain on the appliance emails?
VSS Writer Failed / How to Restart and Re-Register VSS Writers
Animated Tutorials
CVE-2014-7169: Additional Bash Vulnerability
Hyper-V 2012 backup errors with "An error was encountered while getting version of the VM"