Lucene search

K
ubuntucveUbuntu.comUB:CVE-2013-1775
HistoryFeb 27, 2013 - 12:00 a.m.

CVE-2013-1775

2013-02-2700:00:00
ubuntu.com
ubuntu.com
21

CVSS2

6.9

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

EPSS

0

Percentile

16.4%

sudo 1.6.0 through 1.7.10p6 and sudo 1.8.0 through 1.8.6p6 allows local
users or physically proximate attackers to bypass intended time
restrictions and retain privileges without re-authenticating by setting the
system clock and sudo user timestamp to the epoch.

OSVersionArchitecturePackageVersionFilename
ubuntu8.04noarchsudo< 1.6.9p10-1ubuntu3.10UNKNOWN
ubuntu10.04noarchsudo< 1.7.2p1-1ubuntu5.6UNKNOWN
ubuntu11.10noarchsudo< 1.7.4p6-1ubuntu2.2UNKNOWN
ubuntu12.04noarchsudo< 1.8.3p1-1ubuntu3.4UNKNOWN
ubuntu12.10noarchsudo< 1.8.5p2-1ubuntu1.1UNKNOWN

CVSS2

6.9

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

EPSS

0

Percentile

16.4%