sudo 1.6.0 through 1.7.10p6 and sudo 1.8.0 through 1.8.6p6 allows local users or physically proximate attackers to bypass intended time restrictions and retain privileges without re-authenticating by setting the system clock and sudo user timestamp to the epoch.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
Configuration 4 (hide)
|
History
No history.
Information
Published : 2013-03-05 21:38
Updated : 2024-02-28 12:00
NVD link : CVE-2013-1775
Mitre link : CVE-2013-1775
CVE.ORG link : CVE-2013-1775
JSON object : View
Products Affected
apple
- mac_os_x
todd_miller
- sudo
CWE
CWE-264
Permissions, Privileges, and Access Controls