Vulnerabilities > CVE-2005-1119 - Unspecified vulnerability in Todd Miller Sudo

047910
CVSS 2.1 - LOW
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
PARTIAL
Availability impact
NONE
local
low complexity
todd-miller

Summary

Sudo VISudo 1.6.8 and earlier allows local users to corrupt arbitrary files via a symlink attack on temporary files.

Statements

contributorMark J Cox
lastmodified2006-08-30
organizationRed Hat
statementWe do not consider this a security issue, the bug can only manifest if the software is invoked on a sudoers file that is contained in a world writable directory.