4 matches found
SUSE CVE-2013-1776
sudo 1.3.5 through 1.7.10 and 1.8.0 through 1.8.5, when the ttytickets option is enabled, does not properly validate the controlling terminal device, which allows local users with sudo permissions to hijack the authorization of another terminal via vectors related to connecting to the standard...
DEBIAN-CVE-2013-2777
sudo before 1.7.10p5 and 1.8.x before 1.8.6p6, when the ttytickets option is enabled, does not properly validate the controlling terminal device, which allows local users with sudo permissions to hijack the authorization of another terminal via vectors related to a session without a controlling...
CVE-2013-1776
sudo 1.3.5 through 1.7.10 and 1.8.0 through 1.8.5, when the ttytickets option is enabled, does not properly validate the controlling terminal device, which allows local users with sudo permissions to hijack the authorization of another terminal via vectors related to connecting to the standard...
CVE-2013-1776
The CVE-2013-1776 issue is described as: when tty_tickets is enabled, sudo 1.3.5–1.7.10 and 1.8.0–1.8.5 fail to validate the controlling terminal device, allowing local users with sudo privileges to hijack authorization for another terminal via stdin/stdout/stderr vectors. MiracleLinux advisories...