Search for vulnerabilities
| Vulnerability ID | VCID-z8h3-7t5s-aaap |
| Aliases |
CVE-2013-1775
|
| Summary | sudo 1.6.0 through 1.7.10p6 and sudo 1.8.0 through 1.8.6p6 allows local users or physically proximate attackers to bypass intended time restrictions and retain privileges without re-authenticating by setting the system clock and sudo user timestamp to the epoch. |
| Status | Published |
| Exploitability | 2.0 |
| Weighted Severity | 6.2 |
| Risk | 10.0 |
| Affected and Fixed Packages | Package Details |
| Data source | Exploit-DB |
|---|---|
| Date added | Aug. 30, 2013 |
| Description | Apple Mac OSX 10.8.4 - Local Privilege Escalation |
| Ransomware campaign use | Known |
| Source publication date | Aug. 30, 2013 |
| Exploit type | local |
| Platform | osx |
| Source update date | Aug. 30, 2013 |
| Data source | Metasploit |
|---|---|
| Description | This module gains a session with root permissions on versions of OS X with sudo binary vulnerable to CVE-2013-1775. Tested working on Mac OS 10.7-10.8.4, and possibly lower versions. If your session belongs to a user with Administrative Privileges (the user is in the sudoers file and is in the "admin group"), and the user has ever run the "sudo" command, it is possible to become the super user by running `sudo -k` and then resetting the system clock to 01-01-1970. This module will fail silently if the user is not an admin, if the user has never run the sudo command, or if the admin has locked the Date/Time preferences. Note: If the user has locked the Date/Time preferences, requests to overwrite the system clock will be ignored, and the module will silently fail. However, if the "Require an administrator password to access locked preferences" setting is not enabled, the Date/Time preferences are often unlocked every time the admin logs in, so you can install persistence and wait for a chance later. |
| Note | {}
|
| Ransomware campaign use | Unknown |
| Source publication date | Feb. 28, 2013 |
| Platform | OSX |
| Source URL | https://github.com/rapid7/metasploit-framework/tree/master/modules/exploits/osx/local/sudo_password_bypass.rb |
| Exploitability (E) | Access Vector (AV) | Access Complexity (AC) | Authentication (Au) | Confidentiality Impact (C) | Integrity Impact (I) | Availability Impact (A) |
|---|---|---|---|---|---|---|
high functional unproven proof_of_concept not_defined |
local adjacent_network network |
high medium low |
multiple single none |
none partial complete |
none partial complete |
none partial complete |
| Percentile | 0.16912 |
| EPSS Score | 0.00045 |
| Published At | Nov. 1, 2024, midnight |
| Date | Actor | Action | Source | VulnerableCode Version |
|---|---|---|---|---|
| There are no relevant records. | ||||