CVE-2017-1000367
The exp is from @c0d3z3r0
Vulnerability reference:
Sudo 1.8.6p7 - 1.8.20
- System must be selinux-enabled
- sudo needs to be built with selinux support (sudo -r)
- User needs to have sudo permissions e.g. "toor ALL=(ALL) NOPASSWD: /usr/bin/sum"
- Compile: gcc -o sudopwn sudopwn.c -lutil
