oss-sec mailing list archives
Re: Qualys Security Advisory - CVE-2017-1000367 in Sudo's get_process_ttyname() for Linux
From: Qualys Security Advisory <qsa () qualys com>
Date: Wed, 14 Jun 2017 09:59:26 -0700
Hi all, Since a working exploit has been published already (https://github.com/c0d3z3r0/sudo-CVE-2017-1000367), please find our Sudoer-to-root exploit (Linux_sudo_CVE-2017-1000367.c) attached to this mail. Thank you very much! With best regards, -- the Qualys Security Advisory team
Attachment:
Linux_sudo_CVE-2017-1000367.c
Description:
Current thread:
- Qualys Security Advisory - CVE-2017-1000367 in Sudo's get_process_ttyname() for Linux Qualys Security Advisory (May 30)
- Re: Qualys Security Advisory - CVE-2017-1000367 in Sudo's get_process_ttyname() for Linux Hanno Böck (May 30)
- Re: Qualys Security Advisory - CVE-2017-1000367 in Sudo's get_process_ttyname() for Linux kseifried () redhat com (May 30)
- Re: Qualys Security Advisory - CVE-2017-1000367 in Sudo's get_process_ttyname() for Linux Qualys Security Advisory (Jun 14)
- Re: Qualys Security Advisory - CVE-2017-1000367 in Sudo's get_process_ttyname() for Linux Hanno Böck (May 30)