Lucene search
K

5 matches found

Tenable Nessus
Tenable Nessus
added 2014/01/22 12:0 a.m.43 views

GLSA-201401-23 : sudo: Privilege escalation

The remote host is affected by the vulnerability described in GLSA-201401-23 sudo: Privilege escalation Multiple vulnerabilities have been found in sudo: sudo does not correctly validate the controlling terminal on a system without /proc or when the ttytickets option is enabled. sudo does not...

6.9CVSS7.9AI score0.03202EPSS
Exploits8References5
RedHat Linux
RedHat Linux
added 2013/09/30 8:30 p.m.4 views

sudo: bypass of tty_tickets constraints

sudo 1.3.5 through 1.7.10 and 1.8.0 through 1.8.5, when the ttytickets option is enabled, does not properly validate the controlling terminal device, which allows local users with sudo permissions to hijack the authorization of another terminal via vectors related to connecting to the standard...

4.4CVSS7.1AI score0.00378EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2013/04/08 5:55 p.m.31 views

CVE-2013-2777

sudo before 1.7.10p5 and 1.8.x before 1.8.6p6, when the ttytickets option is enabled, does not properly validate the controlling terminal device, which allows local users with sudo permissions to hijack the authorization of another terminal via vectors related to a session without a controlling...

4.4CVSS7AI score0.00367EPSS
Exploits0References9
Prion
Prion
added 2013/04/08 5:55 p.m.26 views

Input validation

sudo before 1.7.10p5 and 1.8.x before 1.8.6p6, when the ttytickets option is enabled, does not properly validate the controlling terminal device, which allows local users with sudo permissions to hijack the authorization of another terminal via vectors related to a session without a controlling...

4.4CVSS6.6AI score0.00378EPSS
Exploits0References14Affected Software2
Debian CVE
Debian CVE
added 2013/04/08 5:0 p.m.35 views

CVE-2013-1776

sudo 1.3.5 through 1.7.10 and 1.8.0 through 1.8.5, when the ttytickets option is enabled, does not properly validate the controlling terminal device, which allows local users with sudo permissions to hijack the authorization of another terminal via vectors related to connecting to the standard...

4.4CVSS2.8AI score0.00378EPSS
Exploits0
Rows per page
Query Builder