Fluid Attacks Database

Description

There is a possible tty hijacking in shadow 4.x before 4.1.5 and sudo 1.x before 1.7.4 via "su - user -c program". The user session can be escaped to the parent session by using the TIOCSTI ioctl to push characters into the input buffer to be read by the next process.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
debian 12	shadow	>=0 <1:4.1.5-1	1:4.1.5-1
debian 13	shadow	>=0 <1:4.1.5-1	1:4.1.5-1
debian 14	shadow	>=0 <1:4.1.5-1	1:4.1.5-1
debian 11	shadow	>=0 <1:4.1.5-1	1:4.1.5-1
debian 11	sudo	>=0 <1.7.4p4	1.7.4p4
debian 14	sudo	>=0 <1.7.4p4	1.7.4p4
debian 12	sudo	>=0 <1.7.4p4	1.7.4p4
debian 13	sudo	>=0 <1.7.4p4	1.7.4p4

Aliases

1. CVE-2005-48902. NVD-2005-48903. OSV-DEBIAN-2005-48904. OSV-2005-48905. SECURITY-TRACKER-CVE-2005-4890

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.