Lucene search
K

16 matches found

EUVD
EUVD
added 2025/10/23 11:29 a.m.5 views

EUVD-2025-35665

An issue in Moodle’s timed assignment feature allowed students to bypass the time restriction, potentially giving them more time than allowed to complete an assessment...

5.4CVSS6.5AI score0.00204EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 6:16 a.m.6 views

SUSE CVE-2005-4352

The securelevels implementation in NetBSD 2.1 and earlier, and Linux 2.6.15 and earlier, allows local users to bypass time setting restrictions and set the clock backwards by setting the clock ahead to the maximum unixtime value 19 Jan 2038, which then wraps around to the minimum value 13 Dec 190...

2.1CVSS6.5AI score0.00468EPSS
Exploits1References3
Malwarebytes
Malwarebytes
added 2018/08/14 3:0 p.m.27 views

Back to school cybersecurity: hints, tips, and links for a safer school year

It's that time of year again when parents are slowly gearing up for a new school term. Some schools have a strict policy of only using their own pre-approved lab devices, while others allow students to bring their own devices. Whatever the plan, it's never too early to start thinking about some o...

0.1AI score
Exploits0
exploitpack
exploitpack
added 2015/02/03 1:14 p.m.12 views

OSX-10.8.4-Local-Root-Privilege-Escalation

sudo 1.6.0 through 1.7.10p6 and sudo 1.8.0 through 1.8.6p6 allows local users or physically proximate attackers to bypass intended time restrictions and retain privileges without re-authenticating by setting the system clock and sudo user timestamp to the epoch...

4.9AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2015/01/19 12:0 a.m.50 views

Oracle Solaris Third-Party Patch Update : sudo (multiple_permissions_privileges_and_access)

The remote Solaris system is missing necessary patches to address security updates : - sudo 1.6.0 through 1.7.10p6 and sudo 1.8.0 through 1.8.6p6 allows local users or physically proximate attackers to bypass intended time restrictions and retain privileges without re-authenticating by setting th...

6.9CVSS8AI score0.03202EPSS
Exploits8References4
Prion
Prion
added 2014/03/24 2:20 p.m.12 views

Input validation

The time-validation implementation in 1 mod/feedback/complete.php and 2 mod/feedback/completeguest.php in Moodle through 2.3.11, 2.4.x before 2.4.9, 2.5.x before 2.5.5, and 2.6.x before 2.6.2 allows remote authenticated users to bypass intended restrictions on starting a Feedback activity by...

4.9CVSS6.5AI score0.01524EPSS
Exploits0References3Affected Software1
Tenable Nessus
Tenable Nessus
added 2014/01/22 12:0 a.m.43 views

GLSA-201401-23 : sudo: Privilege escalation

The remote host is affected by the vulnerability described in GLSA-201401-23 sudo: Privilege escalation Multiple vulnerabilities have been found in sudo: sudo does not correctly validate the controlling terminal on a system without /proc or when the ttytickets option is enabled. sudo does not...

6.9CVSS7.9AI score0.03202EPSS
Exploits8References5
RedHat Linux
RedHat Linux
added 2013/11/20 4:47 p.m.3 views

sudo: authentication bypass via reset system clock

sudo 1.6.0 through 1.7.10p6 and sudo 1.8.0 through 1.8.6p6 allows local users or physically proximate attackers to bypass intended time restrictions and retain privileges without re-authenticating by setting the system clock and sudo user timestamp to the epoch...

6.9CVSS7.4AI score0.03202EPSS
Exploits8References5
Tenable Nessus
Tenable Nessus
added 2013/04/20 12:0 a.m.34 views

Mandriva Linux Security Advisory : sudo (MDVSA-2013:054)

Multiple vulnerabilities has been found and corrected in sudo : A flaw exists in the IP network matching code in sudo versions 1.6.9p3 through 1.8.4p4 that may result in the local host being matched even though it is not actually part of the network described by the IP address and associated...

7.2CVSS8AI score0.03202EPSS
Exploits8References6
Prion
Prion
added 2013/03/05 9:38 p.m.27 views

Code injection

sudo 1.6.0 through 1.7.10p6 and sudo 1.8.0 through 1.8.6p6 allows local users or physically proximate attackers to bypass intended time restrictions and retain privileges without re-authenticating by setting the system clock and sudo user timestamp to the epoch...

6.9CVSS6.9AI score0.03202EPSS
Exploits8References17Affected Software2
CVE
CVE
added 2013/03/04 9:0 p.m.131 views

CVE-2013-1775

CVE-2013-1775 affects sudo 1.6.0–1.7.10p6 and 1.8.0–1.8.6p6. The issue allows a local attacker to bypass time-based authentication by setting the system clock to the epoch, enabling privilege escalation if a user has an active sudo timestamp. Debian notes the fix in 1.7.4p4-2 (squeeze) and 1.8.5p...

6.9CVSS8.1AI score0.03202EPSS
Exploits8References17Affected Software1
Debian CVE
Debian CVE
added 2013/03/04 9:0 p.m.35 views

CVE-2013-1775

sudo 1.6.0 through 1.7.10p6 and sudo 1.8.0 through 1.8.6p6 allows local users or physically proximate attackers to bypass intended time restrictions and retain privileges without re-authenticating by setting the system clock and sudo user timestamp to the epoch...

6.9CVSS4.9AI score0.03202EPSS
Exploits8
UbuntuCve
UbuntuCve
added 2013/02/27 12:0 a.m.33 views

CVE-2013-1775

sudo 1.6.0 through 1.7.10p6 and sudo 1.8.0 through 1.8.6p6 allows local users or physically proximate attackers to bypass intended time restrictions and retain privileges without re-authenticating by setting the system clock and sudo user timestamp to the epoch...

6.9CVSS7.2AI score0.03202EPSS
Exploits8References3
NVD
NVD
added 2007/06/04 5:30 p.m.21 views

CVE-2007-2999

Microsoft Windows Server 2003, when time restrictions are in effect for user accounts, generates different error messages for failed login attempts with a valid user name than for those with an invalid user name, which allows context-dependent attackers to determine valid Active Directory account...

1.8CVSS6.4AI score0.01641EPSS
Exploits0References4
Cvelist
Cvelist
added 2007/06/04 5:0 p.m.22 views

CVE-2007-2999

Microsoft Windows Server 2003, when time restrictions are in effect for user accounts, generates different error messages for failed login attempts with a valid user name than for those with an invalid user name, which allows context-dependent attackers to determine valid Active Directory account...

6.4AI score0.01641EPSS
Exploits0References4
Cvelist
Cvelist
added 2006/01/09 8:0 p.m.29 views

CVE-2005-4352

The securelevels implementation in NetBSD 2.1 and earlier, and Linux 2.6.15 and earlier, allows local users to bypass time setting restrictions and set the clock backwards by setting the clock ahead to the maximum unixtime value 19 Jan 2038, which then wraps around to the minimum value 13 Dec 190...

6.3AI score0.00468EPSS
Exploits1References8
Rows per page
Query Builder