CVE-2005-4890

high

Description

There is a possible tty hijacking in shadow 4.x before 4.1.5 and sudo 1.x before 1.7.4 via "su - user -c program". The user session can be escaped to the parent session by using the TIOCSTI ioctl to push characters into the input buffer to be read by the next process.

References

https://security-tracker.debian.org/tracker/CVE-2005-4890

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2005-4890

https://access.redhat.com/security/cve/cve-2005-4890

http://www.openwall.com/lists/oss-security/2014/12/15/5

http://www.openwall.com/lists/oss-security/2014/10/21/1

http://www.openwall.com/lists/oss-security/2014/10/20/9

http://www.openwall.com/lists/oss-security/2013/11/29/5

http://www.openwall.com/lists/oss-security/2013/11/28/10

http://www.openwall.com/lists/oss-security/2013/05/20/3

http://www.openwall.com/lists/oss-security/2012/11/06/8

Details

Source: Mitre, NVD

Published: 2019-11-04

Updated: 2020-08-18

Risk Information

CVSS v2

Base Score: 7.2

Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C

Severity: High

CVSS v3

Base Score: 7.8

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Severity: High