← CVECheck
HomeVulnerabilities

CVE-2002-0043 — HIGH severity vulnerability (sudo 1.6.0 through 1.6.3p7 does not properly clear the envir)

sudo 1.6.0 through 1.6.3p7 does not properly clear the environment before calling the mail program, which could allow local users to gain root privileges by modifying environment variables and changing how the mail program is invoked.

CVE IDCVE-2002-0043
SeverityHIGH
CVSS score7.2
CVSS vectorAV:L/AC:L/Au:N/C:C/I:C/A:C
CWENVD-CWE-Other
StatusModified
Published2002-01-31
Last modified2026-04-16
Descriptionsudo 1.6.0 through 1.6.3p7 does not properly clear the environment before calling the mail program, which could allow local users to gain root privileges by modifying environment variables and changing how the mail program is invoked.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →