Wind River Support Network

HomeDefectsLIN5-13982
Fixed

LIN5-13982 : Security Advisory - sudo - CVE-2013-1775

Created: Mar 18, 2013    Updated: Dec 19, 2017
Resolved Date: Mar 3, 2014
Previous ID: LIN3-24665
Found In Version: 5.0
Fix Version: 5.0.1.13
Severity: Standard
Applicable for: Wind River Linux 5
Component/s: Userspace

Description

sudo 1.6.0 through 1.7.10p6 and sudo 1.8.0 through 1.8.6p6 allows local users or physically-proximate attackers to bypass intended time restrictions and retain privileges without re-authenticating by setting the system clock and sudo user timestamp to the epoch.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-1775

Workaround

Unknown

Steps to Reproduce

Unknown

Other Downloads


Live chat
Online