4723 matches found
sudo: bypass of tty_tickets constraints
sudo 1.3.5 through 1.7.10p5 and 1.8.0 through 1.8.6p6, when running on systems without /proc or the sysctl function with the ttytickets option enabled, does not properly validate the controlling terminal device, which allows local users with sudo permissions to hijack the authorization of another...
sudo: bypass of tty_tickets constraints
sudo 1.3.5 through 1.7.10 and 1.8.0 through 1.8.5, when the ttytickets option is enabled, does not properly validate the controlling terminal device, which allows local users with sudo permissions to hijack the authorization of another terminal via vectors related to connecting to the standard...
sudo: authentication bypass via reset system clock
sudo 1.6.0 through 1.7.10p6 and sudo 1.8.0 through 1.8.6p6 allows local users or physically proximate attackers to bypass intended time restrictions and retain privileges without re-authenticating by setting the system clock and sudo user timestamp to the epoch...
Low: Red Hat Security Advisory: sudo security and bug fix update
An updated sudo package that fixes multiple security issues and several bugs is now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having low security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...
Apple Fixes 30 Bugs With Mountain Lion Update
Apple pushed a handful of patches late last week and updated its OS X Mountain Lion to 10.8.5, improving “stability, compatibility and security” issues and fixing 30 different vulnerabilities in the operating system. The update fixes multiple vulnerabilities in Apache that could have led to a...
Amazon Linux AMI : sudo (ALAS-2012-110)
A flaw was found in the way the network matching code in sudo handled multiple IP networks listed in user specification configuration directives. A user, who is authorized to run commands with sudo on specific hosts, could use this flaw to bypass intended restrictions and run those commands on...
Metasploit Module Adds Sudo Vulnerability for OS X
Attackers looking to exploit a previously disclosed and apparently still unpatched bug in sudo, a Unix-based Linux command found in most Apple OS X builds have gotten a little more help this week. As Threatpost reported in March, the vulnerability CVE-2013-1775 can essentially set back the...
Apple Mac OSX - Sudo Password Bypass (Metasploit)
This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'shellwords' class Metasploit3 'Mac OS X Sudo Password Bypass',...
Mac OS X Sudo Password Bypass Vulnerability
This Metasploit module gains a session with root permissions on versions of OS X with sudo binary vulnerable to CVE-2013-1775. Tested working on Mac OS 10.7-10.8.4, and possibly lower versions. If your session belongs to a user with Administrative Privileges the user is in the sudoers file and is...
Mac OS X Sudo Password Bypass
This module gains a session with root permissions on versions of OS X with sudo binary vulnerable to CVE-2013-1775. Tested working on Mac OS 10.7-10.8.4, and possibly lower versions. If your session belongs to a user with Administrative Privileges the user is in the sudoers file and is in the...
Mac OS X Sudo Password Bypass
This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'shellwords' class Metasploit3 'Mac OS X Sudo Password Bypass',...
Oracle Linux 5 : sudo (ELSA-2010-0675)
The remote Oracle Linux 5 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2010-0675 advisory. 1.7.2p1-8 - added patch for CVE-2010-2956 628628 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note th...
Oracle Linux 5 : sudo (ELSA-2010-0122)
The remote Oracle Linux 5 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2010-0122 advisory. 1.6.9p17-6 - added patches for CVE-2010-0426 and CVE-2010-0427 Resolves: 567689 Tenable has extracted the preceding description block directly from the...
Oracle Linux 5 : sudo (ELSA-2010-0475)
The remote Oracle Linux 5 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2010-0475 advisory. 1.7.2p1-7 - added patch that fixes insufficient environment sanitization issue 598154 Resolves: 598381 Tenable has extracted the preceding description block...
Oracle Linux 5 : sudo (ELSA-2010-0361)
The remote Oracle Linux 5 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2010-0361 advisory. 1.7.2p1-6 - added second patch for CVE-2010-0426 580441 Resolves: 580525 Tenable has extracted the preceding description block directly from the Oracle Linux...
Oracle Linux 5 : sudo (ELSA-2009-0267)
The remote Oracle Linux 5 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2009-0267 advisory. 1.6.9p17-3.el53.1 - audit patch rediff one chunk failed to apply due to fuzz=0 - Fix for incorrect handling of groups in RunasUser 481720 Resolves: 481820 Tenab...
Oracle Linux 5 : sudo (ELSA-2012-1149)
The remote Oracle Linux 5 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2012-1149 advisory. 1.7.2p1-14.2 - added a workaround for a race condition in handling child processes Resolves: rhbz844978 1.7.2p1-14.1 - dont remove the sudoers: line from...
Oracle Linux 5 / 6 : sudo (ELSA-2012-1081)
The remote Oracle Linux 5 / 6 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2012-1081 advisory. 1.7.4p5-12 - added patch for CVE-2012-2337 Resolves: rhbz829756 Tenable has extracted the preceding description block directly from the Oracle Linux securit...
MobileIron Virtual Smartphone Platform Privilege Escalation
MobileIron Virtual Smartphone Platform Privilege Escalation Exploit 0day ======================================================================== The MobileIron Virtual Smartphone Platform is the first solution to combine data-driven smartphone and tablet management with real-time wireless cost...
MobileIron Virtual Smartphone Platform - Privilege Escalation
MobileIron Virtual Smartphone Platform - Privilege Escalation MobileIron Virtual Smartphone Platform Privilege Escalation Exploit 0day ======================================================================== The MobileIron Virtual Smartphone Platform is the first solution to combine data-driven...