Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2011-0008

A certain Fedora patch for parse.c in sudo before 1.7.4p5-1.fc14 on Fedora 14 does not properly interpret a system group (aka %group) in the sudoers file during authorization decisions for a user who belongs to that group, which allows local users to leverage an applicable sudoers file and gain root privileges via a sudo command. NOTE: this vulnerability exists because of a CVE-2009-0034 regression.

Security Impact Summary

CVE-2011-0008 is a security vulnerability that . Impacting 2 products from todd_miller, from redhat organizations running these solutions should prioritize assessment and patching.

Historical Context

Documented in 2011, this vulnerability occurred amid the cloud computing expansion era, where traditional network perimeter security models were being reevaluated. Organizations were transitioning from isolated infrastructure to interconnected systems, creating new attack surfaces that vulnerabilities like this could exploit.

Published

2011-01-20T19:00:07.443

Last Modified

2025-04-11T00:51:21.963

Status

Deferred

Source

[email protected]

Severity

CVSSv2: 6.9 (MEDIUM)

CVSSv2 Vector

AV:L/AC:M/Au:N/C:C/I:C/A:C

Access Vector: LOCAL
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality Impact: COMPLETE
Integrity Impact: COMPLETE
Availability Impact: COMPLETE

Exploitability Score

3.4

Impact Score

10.0

Weaknesses

Type: Primary
NVD-CWE-Other

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	todd_miller	sudo	≤ 1.7.4p5	Yes
Application	todd_miller	sudo	1.3.1	Yes
Application	todd_miller	sudo	1.5	Yes
Application	todd_miller	sudo	1.5.2	Yes
Application	todd_miller	sudo	1.5.3	Yes
Application	todd_miller	sudo	1.5.6	Yes
Application	todd_miller	sudo	1.5.7	Yes
Application	todd_miller	sudo	1.5.8	Yes
Application	todd_miller	sudo	1.5.9	Yes
Application	todd_miller	sudo	1.6	Yes
Application	todd_miller	sudo	1.6.1	Yes
Application	todd_miller	sudo	1.6.2	Yes
Application	todd_miller	sudo	1.6.2p1	Yes
Application	todd_miller	sudo	1.6.2p2	Yes
Application	todd_miller	sudo	1.6.2p3	Yes
Application	todd_miller	sudo	1.6.3	Yes
Application	todd_miller	sudo	1.6.3_p1	Yes
Application	todd_miller	sudo	1.6.3_p2	Yes
Application	todd_miller	sudo	1.6.3_p3	Yes
Application	todd_miller	sudo	1.6.3_p4	Yes
Application	todd_miller	sudo	1.6.3_p5	Yes
Application	todd_miller	sudo	1.6.3_p6	Yes
Application	todd_miller	sudo	1.6.3_p7	Yes
Application	todd_miller	sudo	1.6.3p1	Yes
Application	todd_miller	sudo	1.6.3p2	Yes
Application	todd_miller	sudo	1.6.3p3	Yes
Application	todd_miller	sudo	1.6.3p4	Yes
Application	todd_miller	sudo	1.6.3p5	Yes
Application	todd_miller	sudo	1.6.3p6	Yes
Application	todd_miller	sudo	1.6.3p7	Yes
Application	todd_miller	sudo	1.6.4	Yes
Application	todd_miller	sudo	1.6.4_p1	Yes
Application	todd_miller	sudo	1.6.4_p2	Yes
Application	todd_miller	sudo	1.6.4p1	Yes
Application	todd_miller	sudo	1.6.4p2	Yes
Application	todd_miller	sudo	1.6.5	Yes
Application	todd_miller	sudo	1.6.5_p1	Yes
Application	todd_miller	sudo	1.6.5_p2	Yes
Application	todd_miller	sudo	1.6.5p1	Yes
Application	todd_miller	sudo	1.6.5p2	Yes
Application	todd_miller	sudo	1.6.6	Yes
Application	todd_miller	sudo	1.6.7	Yes
Application	todd_miller	sudo	1.6.7_p5	Yes
Application	todd_miller	sudo	1.6.7p1	Yes
Application	todd_miller	sudo	1.6.7p2	Yes
Application	todd_miller	sudo	1.6.7p3	Yes
Application	todd_miller	sudo	1.6.7p4	Yes
Application	todd_miller	sudo	1.6.7p5	Yes
Application	todd_miller	sudo	1.6.8	Yes
Application	todd_miller	sudo	1.6.8_p1	Yes
Application	todd_miller	sudo	1.6.8_p2	Yes
Application	todd_miller	sudo	1.6.8_p5	Yes
Application	todd_miller	sudo	1.6.8_p7	Yes
Application	todd_miller	sudo	1.6.8_p8	Yes
Application	todd_miller	sudo	1.6.8_p9	Yes
Application	todd_miller	sudo	1.6.8_p12	Yes
Application	todd_miller	sudo	1.6.8p1	Yes
Application	todd_miller	sudo	1.6.8p2	Yes
Application	todd_miller	sudo	1.6.8p3	Yes
Application	todd_miller	sudo	1.6.8p4	Yes
Application	todd_miller	sudo	1.6.8p5	Yes
Application	todd_miller	sudo	1.6.8p6	Yes
Application	todd_miller	sudo	1.6.8p7	Yes
Application	todd_miller	sudo	1.6.8p8	Yes
Application	todd_miller	sudo	1.6.8p9	Yes
Application	todd_miller	sudo	1.6.8p10	Yes
Application	todd_miller	sudo	1.6.8p11	Yes
Application	todd_miller	sudo	1.6.8p12	Yes
Application	todd_miller	sudo	1.6.9	Yes
Application	todd_miller	sudo	1.6.9_p17	Yes
Application	todd_miller	sudo	1.6.9_p18	Yes
Application	todd_miller	sudo	1.6.9_p19	Yes
Application	todd_miller	sudo	1.6.9_p20	Yes
Application	todd_miller	sudo	1.6.9_p21	Yes
Application	todd_miller	sudo	1.6.9_p22	Yes
Application	todd_miller	sudo	1.6.9p1	Yes
Application	todd_miller	sudo	1.6.9p2	Yes
Application	todd_miller	sudo	1.6.9p3	Yes
Application	todd_miller	sudo	1.6.9p4	Yes
Application	todd_miller	sudo	1.6.9p5	Yes
Application	todd_miller	sudo	1.6.9p6	Yes
Application	todd_miller	sudo	1.6.9p7	Yes
Application	todd_miller	sudo	1.6.9p8	Yes
Application	todd_miller	sudo	1.6.9p9	Yes
Application	todd_miller	sudo	1.6.9p10	Yes
Application	todd_miller	sudo	1.6.9p11	Yes
Application	todd_miller	sudo	1.6.9p12	Yes
Application	todd_miller	sudo	1.6.9p13	Yes
Application	todd_miller	sudo	1.6.9p14	Yes
Application	todd_miller	sudo	1.6.9p15	Yes
Application	todd_miller	sudo	1.6.9p16	Yes
Application	todd_miller	sudo	1.6.9p17	Yes
Application	todd_miller	sudo	1.6.9p18	Yes
Application	todd_miller	sudo	1.6.9p19	Yes
Application	todd_miller	sudo	1.6.9p20	Yes
Application	todd_miller	sudo	1.6.9p21	Yes
Application	todd_miller	sudo	1.6.9p22	Yes
Application	todd_miller	sudo	1.6.9p23	Yes
Application	todd_miller	sudo	1.7.0	Yes
Application	todd_miller	sudo	1.7.1	Yes
Application	todd_miller	sudo	1.7.2	Yes
Application	todd_miller	sudo	1.7.2p1	Yes
Application	todd_miller	sudo	1.7.2p2	Yes
Application	todd_miller	sudo	1.7.2p3	Yes
Application	todd_miller	sudo	1.7.2p4	Yes
Application	todd_miller	sudo	1.7.2p5	Yes
Application	todd_miller	sudo	1.7.2p6	Yes
Application	todd_miller	sudo	1.7.2p7	Yes
Application	todd_miller	sudo	1.7.3b1	Yes
Application	todd_miller	sudo	1.7.4	Yes
Application	todd_miller	sudo	1.7.4p1	Yes
Application	todd_miller	sudo	1.7.4p2	Yes
Application	todd_miller	sudo	1.7.4p3	Yes
Application	todd_miller	sudo	1.7.4p4	Yes
Operating System	redhat	fedora	14	No

References

http://lists.fedoraproject.org/pipermail/package-announce/2011-January/053263.html ([email protected])
http://lists.fedoraproject.org/pipermail/package-announce/2011-January/053341.html ([email protected])
http://secunia.com/advisories/42968 Vendor Advisory ([email protected])
http://www.mandriva.com/security/advisories?name=MDVSA-2011:018 ([email protected])
http://www.vupen.com/english/advisories/2011/0195 ([email protected])
http://www.vupen.com/english/advisories/2011/0199 ([email protected])
https://bugzilla.redhat.com/show_bug.cgi?id=668843 Patch ([email protected])
https://exchange.xforce.ibmcloud.com/vulnerabilities/64965 ([email protected])
http://lists.fedoraproject.org/pipermail/package-announce/2011-January/053263.html (af854a3a-2127-422b-91ae-364da2661108)
http://lists.fedoraproject.org/pipermail/package-announce/2011-January/053341.html (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/42968 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.mandriva.com/security/advisories?name=MDVSA-2011:018 (af854a3a-2127-422b-91ae-364da2661108)
http://www.vupen.com/english/advisories/2011/0195 (af854a3a-2127-422b-91ae-364da2661108)
http://www.vupen.com/english/advisories/2011/0199 (af854a3a-2127-422b-91ae-364da2661108)
https://bugzilla.redhat.com/show_bug.cgi?id=668843 Patch (af854a3a-2127-422b-91ae-364da2661108)
https://exchange.xforce.ibmcloud.com/vulnerabilities/64965 (af854a3a-2127-422b-91ae-364da2661108)

How SecUtils Interprets This CVE

SecUtils normalizes and enriches National Vulnerability Database (NVD) records by standardizing vendor and product identifiers, aggregating vulnerability metadata from both NVD and MITRE sources, and providing structured context for security teams. For todd_miller's affected products, we extract Common Platform Enumeration (CPE) data, Common Weakness Enumeration (CWE) classifications, CVSS severity metrics, and reference data to enable rapid vulnerability prioritization and asset correlation. This record contains no exploit code, proof-of-concept instructions, or attack methodologies—only defensive intelligence necessary for patch management, risk assessment, and security operations.