Lucene search

K
cveRedhatCVE-2013-1775
HistoryMar 05, 2013 - 9:38 p.m.

CVE-2013-1775

2013-03-0521:38:56
CWE-264
redhat
web.nvd.nist.gov
94
cve-2013-1775
sudo
vulnerability
bypass
time restrictions
privilege escalation
nvd

CVSS2

6.9

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

AI Score

8.1

Confidence

High

EPSS

0

Percentile

16.4%

sudo 1.6.0 through 1.7.10p6 and sudo 1.8.0 through 1.8.6p6 allows local users or physically proximate attackers to bypass intended time restrictions and retain privileges without re-authenticating by setting the system clock and sudo user timestamp to the epoch.

Affected configurations

Nvd
Node
todd_millersudoMatch1.6
OR
todd_millersudoMatch1.6.1
OR
todd_millersudoMatch1.6.2
OR
todd_millersudoMatch1.6.2p3
OR
todd_millersudoMatch1.6.3
OR
todd_millersudoMatch1.6.3_p7
OR
todd_millersudoMatch1.6.4
OR
todd_millersudoMatch1.6.4p2
OR
todd_millersudoMatch1.6.5
OR
todd_millersudoMatch1.6.6
OR
todd_millersudoMatch1.6.7
OR
todd_millersudoMatch1.6.7p5
OR
todd_millersudoMatch1.6.8
OR
todd_millersudoMatch1.6.8p12
OR
todd_millersudoMatch1.6.9
OR
todd_millersudoMatch1.6.9p20
OR
todd_millersudoMatch1.6.9p21
OR
todd_millersudoMatch1.6.9p22
OR
todd_millersudoMatch1.6.9p23
Node
todd_millersudoMatch1.8.0
OR
todd_millersudoMatch1.8.1
OR
todd_millersudoMatch1.8.1p1
OR
todd_millersudoMatch1.8.1p2
OR
todd_millersudoMatch1.8.2
OR
todd_millersudoMatch1.8.3
OR
todd_millersudoMatch1.8.3p1
OR
todd_millersudoMatch1.8.3p2
OR
todd_millersudoMatch1.8.4
OR
todd_millersudoMatch1.8.4p1
OR
todd_millersudoMatch1.8.4p2
OR
todd_millersudoMatch1.8.4p3
OR
todd_millersudoMatch1.8.4p4
OR
todd_millersudoMatch1.8.4p5
OR
todd_millersudoMatch1.8.5
OR
todd_millersudoMatch1.8.5p1
OR
todd_millersudoMatch1.8.5p2
OR
todd_millersudoMatch1.8.5p3
OR
todd_millersudoMatch1.8.6
OR
todd_millersudoMatch1.8.6p1
OR
todd_millersudoMatch1.8.6p2
OR
todd_millersudoMatch1.8.6p3
OR
todd_millersudoMatch1.8.6p4
OR
todd_millersudoMatch1.8.6p5
OR
todd_millersudoMatch1.8.6p6
Node
applemac_os_xRange10.10.4
Node
todd_millersudoMatch1.7.0
OR
todd_millersudoMatch1.7.1
OR
todd_millersudoMatch1.7.2
OR
todd_millersudoMatch1.7.2p1
OR
todd_millersudoMatch1.7.2p2
OR
todd_millersudoMatch1.7.2p3
OR
todd_millersudoMatch1.7.2p4
OR
todd_millersudoMatch1.7.2p5
OR
todd_millersudoMatch1.7.2p6
OR
todd_millersudoMatch1.7.2p7
OR
todd_millersudoMatch1.7.3b1
OR
todd_millersudoMatch1.7.4
OR
todd_millersudoMatch1.7.4p1
OR
todd_millersudoMatch1.7.4p2
OR
todd_millersudoMatch1.7.4p3
OR
todd_millersudoMatch1.7.4p4
OR
todd_millersudoMatch1.7.4p5
OR
todd_millersudoMatch1.7.4p6
OR
todd_millersudoMatch1.7.5
OR
todd_millersudoMatch1.7.6
OR
todd_millersudoMatch1.7.6p1
OR
todd_millersudoMatch1.7.6p2
OR
todd_millersudoMatch1.7.7
OR
todd_millersudoMatch1.7.8
OR
todd_millersudoMatch1.7.8p1
OR
todd_millersudoMatch1.7.8p2
OR
todd_millersudoMatch1.7.9
OR
todd_millersudoMatch1.7.9p1
OR
todd_millersudoMatch1.7.10
OR
todd_millersudoMatch1.7.10p1
OR
todd_millersudoMatch1.7.10p2
OR
todd_millersudoMatch1.7.10p3
OR
todd_millersudoMatch1.7.10p4
OR
todd_millersudoMatch1.7.10p5
OR
todd_millersudoMatch1.7.10p6
VendorProductVersionCPE
todd_millersudo1.6.4p2cpe:/a:todd_miller:sudo:1.6.4p2:::
todd_millersudo1.6.3+p7cpe:/a:todd_miller:sudo:1.6.3+p7:::
todd_millersudo1.6.7cpe:/a:todd_miller:sudo:1.6.7:::
todd_millersudo1.6.8cpe:/a:todd_miller:sudo:1.6.8:::
todd_millersudo1.6.9p21cpe:/a:todd_miller:sudo:1.6.9p21:::
todd_millersudo1.6.3cpe:/a:todd_miller:sudo:1.6.3:::
todd_millersudo1.6.7p5cpe:/a:todd_miller:sudo:1.6.7p5:::
todd_millersudo1.6.9p22cpe:/a:todd_miller:sudo:1.6.9p22:::
todd_millersudo1.6.4cpe:/a:todd_miller:sudo:1.6.4:::
todd_millersudo1.6.2p3cpe:/a:todd_miller:sudo:1.6.2p3:::
Rows per page:
1-10 of 191

CVSS2

6.9

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

AI Score

8.1

Confidence

High

EPSS

0

Percentile

16.4%