Known Vulnerabilities for products from Todd Miller
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Todd Miller".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2016-7032 json | sudo_noexec.so in Sudo before 1.8.15 on Linux might allow local users to bypass intended noexec command restrictions via an a... | Not Provided | 2017-04-14 | 2025-04-20 |
| CVE-2014-0106 json | Sudo 1.6.9 before 1.8.5, when env_reset is disabled, does not properly check environment variables for the env_delete restric... | Not Provided | 2014-03-11 | 2026-05-06 |
| CVE-2013-2777 json | sudo before 1.7.10p5 and 1.8.x before 1.8.6p6, when the tty_tickets option is enabled, does not properly validate the control... | Not Provided | 2013-04-08 | 2026-04-29 |
| CVE-2013-2776 json | sudo 1.3.5 through 1.7.10p5 and 1.8.0 through 1.8.6p6, when running on systems without /proc or the sysctl function with the ... | Not Provided | 2013-04-08 | 2026-04-29 |
| CVE-2013-1776 json | sudo 1.3.5 through 1.7.10 and 1.8.0 through 1.8.5, when the tty_tickets option is enabled, does not properly validate the con... | Not Provided | 2013-04-08 | 2026-04-29 |
| CVE-2013-1775 json | sudo 1.6.0 through 1.7.10p6 and sudo 1.8.0 through 1.8.6p6 allows local users or physically proximate attackers to bypass int... | Not Provided | 2013-03-05 | 2026-04-29 |
| CVE-2012-3440 json | A certain Red Hat script for sudo 1.7.2 on Red Hat Enterprise Linux (RHEL) 5 allows local users to overwrite arbitrary files ... | Not Provided | 2012-08-08 | 2026-04-29 |
| CVE-2012-2337 json | sudo 1.6.x and 1.7.x before 1.7.9p1, and 1.8.x before 1.8.4p5, does not properly support configurations that use a netmask sy... | Not Provided | 2012-05-18 | 2026-04-29 |
| CVE-2012-0809 json | Format string vulnerability in the sudo_debug function in Sudo 1.8.0 through 1.8.3p1 allows local users to execute arbitrary ... | Not Provided | 2012-02-01 | 2026-04-29 |
| CVE-2011-0010 json | check.c in sudo 1.7.x before 1.7.4p5, when a Runas group is configured, does not require a password for command execution tha... | Not Provided | 2011-01-18 | 2026-04-29 |
| CVE-2011-0008 json | A certain Fedora patch for parse.c in sudo before 1.7.4p5-1.fc14 on Fedora 14 does not properly interpret a system group (aka... | Not Provided | 2011-01-20 | 2026-04-29 |
| CVE-2010-2956 json | Sudo 1.7.0 through 1.7.4p3, when a Runas group is configured, does not properly handle use of the -u option in conjunction wi... | Not Provided | 2010-09-10 | 2026-04-29 |
| CVE-2010-1646 json | The secure path feature in env.c in sudo 1.3.1 through 1.6.9p22 and 1.7.0 through 1.7.2p6 does not properly handle an environ... | Not Provided | 2010-06-07 | 2026-04-29 |
| CVE-2010-1163 json | The command matching functionality in sudo 1.6.8 through 1.7.2p5 does not properly handle when a file in the current working ... | Not Provided | 2010-04-16 | 2026-04-29 |
| CVE-2010-0427 json | sudo 1.6.x before 1.6.9p21, when the runas_default option is used, does not properly set group memberships, which allows loca... | Not Provided | 2010-02-25 | 2026-04-29 |
| CVE-2010-0426 json | sudo 1.6.x before 1.6.9p21 and 1.7.x before 1.7.2p4, when a pseudo-command is enabled, permits a match between the name of th... | Not Provided | 2010-02-24 | 2026-04-29 |
| CVE-2007-4305 json | Multiple race conditions in the (1) Sudo monitor mode and (2) Sysjail policies in Systrace on NetBSD and OpenBSD allow local ... | Not Provided | 2007-08-13 | 2026-04-23 |
| CVE-2007-3149 json | sudo, when linked with MIT Kerberos 5 (krb5), does not properly check whether a user can currently authenticate to Kerberos, ... | Not Provided | 2007-06-11 | 2026-04-23 |
| CVE-2006-0151 json | sudo 1.6.8 and other versions does not clear the PYTHONINSPECT environment variable, which allows limited local users to gain... | Not Provided | 2006-01-09 | 2025-04-03 |
| CVE-2005-4158 json | Sudo before 1.6.8 p12, when the Perl taint flag is off, does not clear the (1) PERLLIB, (2) PERL5LIB, and (3) PERL5OPT enviro... | Not Provided | 2005-12-11 | 2025-04-03 |
Known software with vulnerabilities from Todd Miller
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Todd Miller | Sudo | 1.6 |