Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Sudo 1.6.8p7 on SuSE Linux 9.3, and possibly other Linux distributions, allows local users to gain privileges by using sudo to call su, then entering a blank password and hitting CTRL-C. NOTE: SuSE and multiple third-party researchers have not been able to replicate this issue, stating "Sudo catches SIGINT and returns an empty string for the password so I don't see how this could happen unless the user's actual password was empty.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
SuSE Linux 漏洞
Vulnerability Description
SuSE Linux 9.3及可能其他Linux版本上的Sudo 1.6.8p7允许本地用户通过使用sudo来调用su,然后输入空密码在敲击CTRL-C,来获取权限。 注:SuSE和多个第三方研究者未能重复此问题,指出"Sudo捕捉SIGINT并为密码返回空字符串 ,因此我不知道这是如何发生的,除非用户的真实密码是空的。"
CVSS Information
N/A
Vulnerability Type
N/A