Vulnerabilities > Todd Miller > Sudo > 1.6.4
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2005-06-20 | CVE-2005-1993 | Local Race Condition vulnerability in Todd Miller Sudo Race condition in sudo 1.3.1 up to 1.6.8p8, when the ALL pseudo-command is used after a user entry in the sudoers file, allows local users to gain privileges via a symlink attack. | 3.7 |
2005-05-02 | CVE-2005-1119 | Unspecified vulnerability in Todd Miller Sudo Sudo VISudo 1.6.8 and earlier allows local users to corrupt arbitrary files via a symlink attack on temporary files. | 2.1 |
2005-03-01 | CVE-2004-1051 | sudo before 1.6.8p2 allows local users to execute arbitrary commands by using "()" style environment variables to create functions that have the same name as any program within the bash script that is called without using the program's full pathname. | 7.2 |