sudo-rs Low Privilege File Existence Disclosure Vulnerability

A vulnerability in sudo-rs versions through 0.2.5 allows users with limited sudo privileges to determine the existence of files in inaccessible directories. This is achieved using the 'sudo --list <pathname>' command. The vulnerability could lead to the unintentional disclosure of sensitive information based on file names, which could be leveraged in conjunction with other attacks.

Impact

Exploitation of this vulnerability could result in unauthorized file existence verification, potentially leading to the disclosure of sensitive information.

Reproduction

To reproduce this vulnerability, create a directory with restricted permissions and place a file within it. Then, as a user with limited sudo rights, use the 'sudo --list' command to check for the presence of the file. The response will indicate whether the file exists, thereby disclosing information about inaccessible directories.

Remediation

Users can upgrade to sudo-rs version 0.2.6 or later, where this vulnerability has been fixed.