BeyondTrust 2010
Sudo Vulnerability Analysis

This BeyondTrust report investigates all vulnerabilities published by The National Institute of Standards and Technology (NIST) sudo Security Bulletins. It reports on vulnerabilities that are mitigated by configuring users to operate without the root password to UNIX and Linux operating systems. The results show that despite unpredictable and evolving attacks, companies can greatly reduce risks and threats from a myriad of security vulnerabilities by withholding root access from IT staff.