Strix
26.1K

CVE-2010-1163

UnknownEPSS 0.40%

Last modified

CVE-2010-1163 is a vulnerability of currently unknown severity. The command matching functionality in sudo 1.6.8 through 1.7.2p5 does not properly handle when a file in the current working directory has the same name as a pseudo-command in the sudoers file and the PATH contains an entry for ".", which allows local users to execute arbitrary commands via a Trojan horse executable, as demonstrated using sudoedit, a different vulnerability than CVE-2010-0426.. EPSS estimates a 0.40% chance of exploitation in the next 30 days.

Description

The command matching functionality in sudo 1.6.8 through 1.7.2p5 does not properly handle when a file in the current working directory has the same name as a pseudo-command in the sudoers file and the PATH contains an entry for ".", which allows local users to execute arbitrary commands via a Trojan horse executable, as demonstrated using sudoedit, a different vulnerability than CVE-2010-0426.

Metrics

EPSS Probability
0.40%

32.0th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

VendorProductVersions
Todd MillerSudo1.6.8
Todd MillerSudo1.6.8_p1
Todd MillerSudo1.6.8_p2
Todd MillerSudo1.6.8_p5
Todd MillerSudo1.6.8_p7
Todd MillerSudo1.6.8_p8
Todd MillerSudo1.6.8_p9
Todd MillerSudo1.6.8_p12
Todd MillerSudo1.6.8p7
Todd MillerSudo1.6.9_p17
Todd MillerSudo1.6.9_p18
Todd MillerSudo1.6.9_p19
Todd MillerSudo1.6.9_p20
Todd MillerSudo1.6.9_p21
Todd MillerSudo1.6.9_p22
Todd MillerSudo1.7.0
Todd MillerSudo1.7.1
Todd MillerSudo1.7.2p1
Todd MillerSudo1.7.2p2
Todd MillerSudo1.7.2p3
Todd MillerSudo1.7.2p4

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2010-1163?
The command matching functionality in sudo 1.6.8 through 1.7.2p5 does not properly handle when a file in the current working directory has the same name as a pseudo-command in the sudoers file and the PATH contains an entry for ".", which allows local users to execute arbitrary commands via a Trojan horse executable, as demonstrated using sudoedit, a different vulnerability than CVE-2010-0426.
How severe is CVE-2010-1163?
Severity scoring for CVE-2010-1163 is pending analysis. The EPSS model estimates a 0.40% probability of exploitation in the next 30 days.
How do I fix CVE-2010-1163?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2010-1163?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST