CVE-2012-0809

Sudo <1.8.4 - RCE

Title source: llm

Description

Format string vulnerability in the sudo_debug function in Sudo 1.8.0 through 1.8.3p1 allows local users to execute arbitrary code via format string sequences in the program name for sudo.

Exploits (2)

exploitdb WORKING POC VERIFIED

by aeon · clocallinux

https://www.exploit-db.com/exploits/25134

View Code ZIP pw:eip

exploitdb WRITEUP VERIFIED

by joernchen · textdoslinux

https://www.exploit-db.com/exploits/18436

View Code ZIP pw:eip

References (4)

[Third Party Advisory] http://archives.neohapsis.com/archives/fulldisclosure/2012-01/0591.html

[Exploit] http://archives.neohapsis.com/archives/fulldisclosure/2012-01/att-0591/advisory_sudo.txt

[Exploit, Vendor Advisory] http://www.sudo.ws/sudo/alerts/sudo_debug.html

[Third Party Advisory] http://security.gentoo.org/glsa/glsa-201203-06.xml

Scores

EPSS 0.4560

EPSS Percentile 97.6%

Details

CWE

CWE-134

Status published

Products (7)

todd_miller/sudo 1.8.0

todd_miller/sudo 1.8.1

todd_miller/sudo 1.8.1p1

todd_miller/sudo 1.8.1p2

todd_miller/sudo 1.8.2

todd_miller/sudo 1.8.3

todd_miller/sudo 1.8.3p1

Published Feb 01, 2012

Tracked Since Feb 18, 2026