Vulnerability Report

CVE-2001-0279

Title: sudo buffer overflow allows local root

Privilege escalation

Proof Of Concept

PoC Available for CVE-2001-0279

CWE Category NVD-CWE-noinfo

Published Date May 03, 2001

Modified Date Apr 03, 2025

Exploit Status Available

Score 7.2 CVSS v2.0

Exploit Probability (EPSS)

0.22%

CVE-2001-0279: Buffer overflow in sudo earlier than 1.6.3p6 allows local users to gain root privileges.

http://archives.neohapsis.com/archives/bugtraq/2001-02/0414.html http://archives.neohapsis.com/archives/bugtraq/2001-02/0427.html http://archives.neohapsis.com/archives/bugtraq/2001-02/0437.html http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000381 http://www.debian.org/security/2001/dsa-031 http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-024.php3 http://www.redhat.com/support/errata/RHSA-2001-018.html http://www.redhat.com/support/errata/RHSA-2001-019.html http://archives.neohapsis.com/archives/bugtraq/2001-02/0414.html http://archives.neohapsis.com/archives/bugtraq/2001-02/0427.html http://archives.neohapsis.com/archives/bugtraq/2001-02/0437.html http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000381 http://www.debian.org/security/2001/dsa-031 http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-024.php3 http://www.redhat.com/support/errata/RHSA-2001-018.html http://www.redhat.com/support/errata/RHSA-2001-019.html

CVSS v2.0

Source Entity [email protected]

Severity HIGH

7.2

Access Vector

N/A

Authentication

N/A

RAW VECTOR AV:L/AC:L/Au:N/C:C/I:C/A:C

Total: Patterns

Exploit-DB https://www.exploit-db.com/exploits/20901

View Code

April 03, 2025 MODIFIED

Vulnerability data or affected products updated.

May 03, 2001 PUBLISHED

Vulnerability first announced in NVD.

Access Vector N/A

Complexity N/A

Privileges N/A

Interaction NONE

CVSS Vector String


                                    AV:L/AC:L/Au:N/C:C/I:C/A:C

No specific products linked.