CVE-2012-2337
Last modified
CVE-2012-2337 is a vulnerability of currently unknown severity. sudo 1.6.x and 1.7.x before 1.7.9p1, and 1.8.x before 1.8.4p5, does not properly support configurations that use a netmask syntax, which allows local users to bypass intended command restrictions in opportunistic circumstances by executing a command on a host that has an IPv4 address.. EPSS estimates a 0.40% chance of exploitation in the next 30 days.
Description
sudo 1.6.x and 1.7.x before 1.7.9p1, and 1.8.x before 1.8.4p5, does not properly support configurations that use a netmask syntax, which allows local users to bypass intended command restrictions in opportunistic circumstances by executing a command on a host that has an IPv4 address.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Todd Miller | Sudo | 1.6 |
| Todd Miller | Sudo | 1.6.1 |
| Todd Miller | Sudo | 1.6.2 |
| Todd Miller | Sudo | 1.6.2p3 |
| Todd Miller | Sudo | 1.6.3 |
| Todd Miller | Sudo | 1.6.3_p7 |
| Todd Miller | Sudo | 1.6.4 |
| Todd Miller | Sudo | 1.6.4p2 |
| Todd Miller | Sudo | 1.6.5 |
| Todd Miller | Sudo | 1.6.6 |
| Todd Miller | Sudo | 1.6.7 |
| Todd Miller | Sudo | 1.6.7p5 |
| Todd Miller | Sudo | 1.6.8 |
| Todd Miller | Sudo | 1.6.8p12 |
| Todd Miller | Sudo | 1.6.9 |
| Todd Miller | Sudo | 1.6.9p20 |
| Todd Miller | Sudo | 1.6.9p21 |
| Todd Miller | Sudo | 1.6.9p22 |
| Todd Miller | Sudo | 1.6.9p23 |
References
- http://www.sudo.ws/sudo/alerts/netmask.htmlVendor Advisory
- http://www.sudo.ws/sudo/alerts/netmask.htmlVendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2012-2337?
How severe is CVE-2012-2337?
How do I fix CVE-2012-2337?
Are you affected by CVE-2012-2337?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST