Lucene search
K

7 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2013-2715

Malware in sbrugna...

4.4CVSS7.3AI score0.00373EPSS
Exploits0References24
Veracode
Veracode
added 2019/01/15 8:52 a.m.28 views

Privilege Escalation

sudo is vulnerable to privilege escalation. The controlling terminal device is not properly validated when ttytickets option is enabled. This allow users with sudo permissions to obtain the authorization of another terminal via the standard input, output and error file descriptors of the other...

4.4CVSS7.6AI score0.00378EPSS
Exploits0References29Affected Software1
Tenable Nessus
Tenable Nessus
added 2013/12/14 12:0 a.m.32 views

Amazon Linux AMI : sudo (ALAS-2013-259)

A flaw was found in the way sudo handled time stamp files. An attacker able to run code as a local user and with the ability to control the system clock could possibly gain additional privileges by running commands that the victim user was allowed to run via sudo, without knowing the victim's...

6.9CVSS7.9AI score0.03202EPSS
Exploits8References4
Tenable Nessus
Tenable Nessus
added 2013/10/11 12:0 a.m.48 views

Scientific Linux Security Update : sudo on SL5.x i386/x86_64 (20130930)

A flaw was found in the way sudo handled time stamp files. An attacker able to run code as a local user and with the ability to control the system clock could possibly gain additional privileges by running commands that the victim user was allowed to run via sudo, without knowing the victim's...

6.9CVSS7.8AI score0.03202EPSS
Exploits8References4
UbuntuCve
UbuntuCve
added 2013/04/08 5:55 p.m.31 views

CVE-2013-2777

sudo before 1.7.10p5 and 1.8.x before 1.8.6p6, when the ttytickets option is enabled, does not properly validate the controlling terminal device, which allows local users with sudo permissions to hijack the authorization of another terminal via vectors related to a session without a controlling...

4.4CVSS7AI score0.00367EPSS
Exploits0References9
Debian CVE
Debian CVE
added 2013/04/08 5:0 p.m.34 views

CVE-2013-1776

sudo 1.3.5 through 1.7.10 and 1.8.0 through 1.8.5, when the ttytickets option is enabled, does not properly validate the controlling terminal device, which allows local users with sudo permissions to hijack the authorization of another terminal via vectors related to connecting to the standard...

4.4CVSS2.8AI score0.00378EPSS
Exploits0
CVE
CVE
added 2013/04/08 5:0 p.m.79 views

CVE-2013-2777

CVE-2013-2777 affects sudo before 1.7.10p5 and 1.8.x before 1.8.6p6 when tty_tickets is enabled. The flaw is improper validation of the controlling terminal device, allowing a local user with sudo privileges to hijack the authorization of another terminal by interacting with the session without a...

4.4CVSS8.1AI score0.00367EPSS
Exploits0References14Affected Software1
Rows per page
Query Builder