Published at LXer:
It appears that there's a bug in Ubuntu distributions which lets malicious users to locally exploit sudo and gain access to the user's account without knowing their password. The bug was submitted to Canonical's Launchpad back in September 2013 by user Mark Smith.
Read More...