Skip to content

Pwnies

recognize both excellence and incompetence in the field of information security

  • news
  • About
  • noms
  • winners
  • previous
  • team

The 2021 Pwnie Winner For Best Privilege Escalation Bug

Heap-based buffer overflow in Sudo!

Researcher Name: Baron Samedit – Qualys

Link: https://www.qualys.com/2021/01/26/cve-2021-3156/baron-samedit-heap-based-overflow-sudo.txt

CVE: CVE-2021-3156

A 10-year-old bug on a very popular security boundary. This bug is unique as it couldn’t be fuzzed out and required knowledge of how the system interacts with sudo, making it a very clever find.

calendar

Jun 5
Nominations open
Jul 21
Nominees announced
Aug 4
5:30pm Awards ceremony at the BlackHat USA, Mandalay Bay EF

awards ceremony

Date
August 4th
Time
17:30 EST
Where
Black Hat USA 2020

follow us

  • twitter
  • atom feed

Archives

  • Nominations and Winners Archive
Copyright © 2007-2023 Pwnie Awards LLC. Designed by ikonoklasm.