CVE-2021-3156: Sudo Heap-Based Buffer Overflow Vulnerability Alert

Comments Off on CVE-2021-3156: Sudo Heap-Based Buffer Overflow Vulnerability Alert
CVE-2021-3156: Sudo Heap-Based Buffer Overflow Vulnerability Alert

On January 27, 2021, RedHat issued a risk notice for heap-based buffer overflow vulnerability, the vulnerability number is CVE-2021-3156. The vulnerability level is a high risk.  CVSS v3 Base Score is 7.0.

Attackers can use heap-based buffer overflow vulnerability to gain root privileges after obtaining server permissions. Currently, Debian has fixed the vulnerability, Centos is still affected.

Vulnerability Detail

A heap-based buffer overflow was found in the way sudo parsed command line parameters. Any local user (normal user and system user, sudoer and non-sudoers) can exploit this vulnerability without authentication, and the attacker does not need to know the user’s password. Successfully exploiting this vulnerability to gain root privileges.

How to exploit this bug

Log in to the system as a non-root user and use the command sudoedit -s /

  • -If you see an error that starts with sudoedit:, it indicates that there is a vulnerability.
  • -If you see an error starting with usage:, then the patch has taken effect.

Demo

Affected version

  • sudo: 1.8.2 – 1.8.31p2
  • sudo: 1.9.0 – 1.9.5p1

Solution

In this regard, we recommend that users upgrade sudo to the latest version in time.

The post CVE-2021-3156: Sudo Heap-Based Buffer Overflow Vulnerability Alert appeared first on InfoTech News.

Related Articles

ABOUT US

Haxf4rall is a collective, a good starting point and provides a variety of quality material for cyber security professionals.

Our primary focus revolves around the latest tools released in the Infosec community and provide a platform for developers to showcase their skillset and current projects.

COMPANY
Live Chat
RESOURCES
Get Started
TOOLBOX
Tools Directory

2014 – 2020 | Haxf4rall.com               Stay Connected:

Facebook Twitter Google-plus Wordpress