CVE-2013-1775
published 2013-03-05CVE-2013-1775: sudo 1.6.0 through 1.7.10p6 and sudo 1.8.0 through 1.8.6p6 allows local users or physically proximate attackers to bypass intended time restrictions and retain…
medium6.9CVSS 3.1
AVLACMAuNCCICAC
EXPLOIT
sudo 1.6.0 through 1.7.10p6 and sudo 1.8.0 through 1.8.6p6 allows local users or physically proximate attackers to bypass intended time restrictions and retain privileges without re-authenticating by setting the system clock and sudo user timestamp to the epoch.
Affected
86 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | mac_os_x | <= 10.10.4 | — |
| apple | os_x_yosemite_v10.10.5_and_security_update_2015-006 | — | — |
| debian | sudo | < sudo 1.8.5p2-1+nmu1 (bookworm) | sudo 1.8.5p2-1+nmu1 (bookworm) |
| sudo_project | sudo | >= 0 < 1.8.5p2-1+nmu1 | 1.8.5p2-1+nmu1 |
| sudo_project | sudo | >= 0 < 1.8.5p2-1+nmu1 | 1.8.5p2-1+nmu1 |
| sudo_project | sudo | >= 0 < 1.8.5p2-1+nmu1 | 1.8.5p2-1+nmu1 |
| sudo_project | sudo | >= 0 < 1.8.5p2-1+nmu1 | 1.8.5p2-1+nmu1 |
| todd_miller | sudo | — | — |
| todd_miller | sudo | — | — |
| todd_miller | sudo | — | — |
| todd_miller | sudo | — | — |
| todd_miller | sudo | — | — |
| todd_miller | sudo | — | — |
| todd_miller | sudo | — | — |
| todd_miller | sudo | — | — |
| todd_miller | sudo | — | — |
| todd_miller | sudo | — | — |
| todd_miller | sudo | — | — |
| todd_miller | sudo | — | — |
| todd_miller | sudo | — | — |
| todd_miller | sudo | — | — |
| todd_miller | sudo | — | — |
| todd_miller | sudo | — | — |
| todd_miller | sudo | — | — |
| todd_miller | sudo | — | — |
CVSS provenance
nvd6.9MEDIUMAV:L/AC:M/Au:N/C:C/I:C/A:C
osv6.9MEDIUM