search

worawit / CVE-2021-3156

Sudo Baron Samedit Exploit
BSD 3-Clause "New" or "Revised" License
737 stars 168 forks source link

Centos7.9 cannot use #7

Open linsihao7788 opened 3 years ago

linsihao7788 commented 3 years ago

My system version is Centos7.9 and sudo version is 1.8.23 CentOS is not able to use the vulnerability?

xhat007 commented 3 years ago

@linsihao7788

Did u try this exploit : exploit_cent7_userspec.py ??

worawit commented 3 years ago

vulnerable sudo package on CentOS 7 is exploitable. please make sure that sudo is not patched before running exploit. Many linux distribution backport a patch and increase only its package version. So you see version is old but it might be patched.