fkie_nvd - fkie_cve-2016-7032

fkie_cve-2016-7032

Vulnerability from fkie_nvd

Published

2017-04-14 18:59

Modified

2025-04-20 01:37

Severity ?

7.0 (High) - CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Summary

sudo_noexec.so in Sudo before 1.8.15 on Linux might allow local users to bypass intended noexec command restrictions via an application that calls the (1) system or (2) popen function.

References

URL	Tags
secalert@redhat.com	http://rhn.redhat.com/errata/RHSA-2016-2872.html
secalert@redhat.com	http://www.securityfocus.com/bid/95776	Third Party Advisory, VDB Entry
secalert@redhat.com	https://bugzilla.redhat.com/show_bug.cgi?id=1372830	Issue Tracking, Third Party Advisory, VDB Entry
secalert@redhat.com	https://usn.ubuntu.com/3968-3/
secalert@redhat.com	https://www.sudo.ws/alerts/noexec_bypass.html
af854a3a-2127-422b-91ae-364da2661108	http://rhn.redhat.com/errata/RHSA-2016-2872.html
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/95776	Third Party Advisory, VDB Entry
af854a3a-2127-422b-91ae-364da2661108	https://bugzilla.redhat.com/show_bug.cgi?id=1372830	Issue Tracking, Third Party Advisory, VDB Entry
af854a3a-2127-422b-91ae-364da2661108	https://usn.ubuntu.com/3968-3/
af854a3a-2127-422b-91ae-364da2661108	https://www.sudo.ws/alerts/noexec_bypass.html

Impacted products

Vendor	Product	Version
todd_miller	sudo	1.6.8
todd_miller	sudo	1.6.9
todd_miller	sudo	1.7.0
todd_miller	sudo	1.7.1
todd_miller	sudo	1.7.2
todd_miller	sudo	1.7.3
todd_miller	sudo	1.7.4
todd_miller	sudo	1.7.5
todd_miller	sudo	1.7.6
todd_miller	sudo	1.7.7
todd_miller	sudo	1.7.8
todd_miller	sudo	1.7.9
todd_miller	sudo	1.7.10
todd_miller	sudo	1.8.0
todd_miller	sudo	1.8.1
todd_miller	sudo	1.8.2
todd_miller	sudo	1.8.3
todd_miller	sudo	1.8.4
todd_miller	sudo	1.8.5
todd_miller	sudo	1.8.6
todd_miller	sudo	1.8.7
todd_miller	sudo	1.8.8
todd_miller	sudo	1.8.9
todd_miller	sudo	1.8.10
todd_miller	sudo	1.8.11
todd_miller	sudo	1.8.12
todd_miller	sudo	1.8.13
todd_miller	sudo	1.8.14

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:todd_miller:sudo:1.6.8:*:*:*:*:*:*:*",
              "matchCriteriaId": "B6419309-385F-4525-AD4B-C73B1A3ED935",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:todd_miller:sudo:1.6.9:*:*:*:*:*:*:*",
              "matchCriteriaId": "EE103608-6BCB-4EC0-8EB1-110A80829592",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:todd_miller:sudo:1.7.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "643ABD1F-83E1-4B71-AA59-8CF8B4018A46",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:todd_miller:sudo:1.7.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "8967DE4C-3D41-4BCE-97B0-469FCFBCE332",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:todd_miller:sudo:1.7.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "5C0D8CB9-3156-4F7F-A616-59EF530540D2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:todd_miller:sudo:1.7.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "4D705745-C004-4E7E-9E56-84FB2B7CF8FA",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:todd_miller:sudo:1.7.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "837DD56D-267D-4AAA-9DB3-4B42FAE6E10C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:todd_miller:sudo:1.7.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "06A22F86-72E8-42AE-BD52-BFF6498AB999",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:todd_miller:sudo:1.7.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "7C585A90-21F0-4BCF-85A4-BF470F581CBA",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:todd_miller:sudo:1.7.7:*:*:*:*:*:*:*",
              "matchCriteriaId": "28E7BF14-597B-4C3F-A8CE-5359C047F9C9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:todd_miller:sudo:1.7.8:*:*:*:*:*:*:*",
              "matchCriteriaId": "E4D329BB-490F-4903-93FC-E45AF6EAEE4B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:todd_miller:sudo:1.7.9:*:*:*:*:*:*:*",
              "matchCriteriaId": "A426F146-45BD-4666-81C0-00B719206288",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:todd_miller:sudo:1.7.10:*:*:*:*:*:*:*",
              "matchCriteriaId": "46C40A7E-2ED8-4D13-A381-A219CC6B1B15",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:todd_miller:sudo:1.8.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "4CCE5D7D-D269-4A10-B3C0-C5177F30BD29",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:todd_miller:sudo:1.8.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "3F57804C-633D-4A0C-AF73-21C0BFBEA715",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:todd_miller:sudo:1.8.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "97FF463B-A0BE-4E14-B644-F42D5D5CAB9C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:todd_miller:sudo:1.8.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "2224F7BC-145F-4E06-AAD8-280AD42339CF",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:todd_miller:sudo:1.8.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "D0403E11-4280-49C2-9E38-E0524BC31768",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:todd_miller:sudo:1.8.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "9A71D36B-D2FD-4EDA-9D99-BF9F44DA980D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:todd_miller:sudo:1.8.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "DB3D2805-A361-4A13-9E19-889CBE703137",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:todd_miller:sudo:1.8.7:*:*:*:*:*:*:*",
              "matchCriteriaId": "2DC61847-D662-402E-907E-F79F92F155D0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:todd_miller:sudo:1.8.8:*:*:*:*:*:*:*",
              "matchCriteriaId": "C0CE60B2-566F-4ED5-8641-239770D2E72C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:todd_miller:sudo:1.8.9:*:*:*:*:*:*:*",
              "matchCriteriaId": "045B81ED-812E-408B-8E8C-AEF65DE17057",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:todd_miller:sudo:1.8.10:*:*:*:*:*:*:*",
              "matchCriteriaId": "AF1AD785-0C73-4100-A9AD-9E7BA1F84CE4",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:todd_miller:sudo:1.8.11:*:*:*:*:*:*:*",
              "matchCriteriaId": "D6C13533-A5C8-4DF6-A181-BD54964AF274",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:todd_miller:sudo:1.8.12:*:*:*:*:*:*:*",
              "matchCriteriaId": "31F95A82-C148-4609-BFE9-5170AD365E66",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:todd_miller:sudo:1.8.13:*:*:*:*:*:*:*",
              "matchCriteriaId": "C66AE243-935F-4EF2-BC1B-A31976591F62",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:todd_miller:sudo:1.8.14:p3:*:*:*:*:*:*",
              "matchCriteriaId": "7F20D79C-0756-4456-B582-84CCA04E954A",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "sudo_noexec.so in Sudo before 1.8.15 on Linux might allow local users to bypass intended noexec command restrictions via an application that calls the (1) system or (2) popen function."
    },
    {
      "lang": "es",
      "value": "Sudo_noexec.so en Sudo en versiones anteriores a 1.8.15 en Linux podr\u00eda permitir a los usuarios locales evitar las restricciones de comandos noexec pretendidas a trav\u00e9s de una aplicaci\u00f3n que llama al (1) sistema o (2) a la funci\u00f3n popen."
    }
  ],
  "id": "CVE-2016-7032",
  "lastModified": "2025-04-20T01:37:25.860",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "MEDIUM",
          "accessVector": "LOCAL",
          "authentication": "NONE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 6.9,
          "confidentialityImpact": "COMPLETE",
          "integrityImpact": "COMPLETE",
          "vectorString": "AV:L/AC:M/Au:N/C:C/I:C/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 3.4,
        "impactScore": 10.0,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ],
    "cvssMetricV30": [
      {
        "cvssData": {
          "attackComplexity": "HIGH",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 7.0,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.0"
        },
        "exploitabilityScore": 1.0,
        "impactScore": 5.9,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2017-04-14T18:59:00.783",
  "references": [
    {
      "source": "secalert@redhat.com",
      "url": "http://rhn.redhat.com/errata/RHSA-2016-2872.html"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "http://www.securityfocus.com/bid/95776"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Issue Tracking",
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1372830"
    },
    {
      "source": "secalert@redhat.com",
      "url": "https://usn.ubuntu.com/3968-3/"
    },
    {
      "source": "secalert@redhat.com",
      "url": "https://www.sudo.ws/alerts/noexec_bypass.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://rhn.redhat.com/errata/RHSA-2016-2872.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "http://www.securityfocus.com/bid/95776"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Issue Tracking",
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1372830"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://usn.ubuntu.com/3968-3/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://www.sudo.ws/alerts/noexec_bypass.html"
    }
  ],
  "sourceIdentifier": "secalert@redhat.com",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-284"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

CVE-2016-7032 (GCVE-0-2016-7032)

Vulnerability from cvelistv5

Published

2017-04-14 18:00