CVE-2008-3067

Impact:
Low
Public Date:
2008-07-04
Bugzilla:
454398: CVE-2008-3067 sudo: does not flush stdin buffer on password timeout

The MITRE CVE dictionary describes this issue as:

sudo in SUSE openSUSE 10.3 does not clear the stdin buffer when password entry times out, which might allow local users to obtain a password by reading stdin from the parent process after a sudo child process exits.

Find out more about CVE-2008-3067 from the MITRE CVE dictionary dictionary and NIST NVD.

Statement

Not vulnerable. This issue did not affect the versions of sudo as shipped with Red Hat Enterprise Linux 2.1, 3, 4, or 5.

Last Modified

CVE description copyright © 2017, The MITRE Corporation

Close

Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.