CVE-2013-1775

MITRE NVD CVE.ORG Print: PDF PDF

Summary

CVECVE-2013-1775
StatePUBLIC
Assigner[email protected]
Source PriorityCVE Program / NVD first with legacy fallback
Published2013-03-05 21:38:00 UTC
Updated2016-11-28 19:08:00 UTC
Descriptionsudo 1.6.0 through 1.7.10p6 and sudo 1.8.0 through 1.8.6p6 allows local users or physically proximate attackers to bypass intended time restrictions and retain privileges without re-authenticating by setting the system clock and sudo user timestamp to the epoch.

Risk And Classification

Problem Types: CWE-264

NVD Known Affected Configurations (CPE 2.3)

TypeVendorProductVersionUpdateEditionLanguage
Operating System Apple Mac Os X All All All All
Application Todd Miller Sudo 1.6 All All All
Application Todd Miller Sudo 1.6.1 All All All
Application Todd Miller Sudo 1.6.2 All All All
Application Todd Miller Sudo 1.6.2p3 All All All
Application Todd Miller Sudo 1.6.3 All All All
Application Todd Miller Sudo 1.6.3_p7 All All All
Application Todd Miller Sudo 1.6.4 All All All
Application Todd Miller Sudo 1.6.4p2 All All All
Application Todd Miller Sudo 1.6.5 All All All
Application Todd Miller Sudo 1.6.6 All All All
Application Todd Miller Sudo 1.6.7 All All All
Application Todd Miller Sudo 1.6.7p5 All All All
Application Todd Miller Sudo 1.6.8 All All All
Application Todd Miller Sudo 1.6.8p12 All All All
Application Todd Miller Sudo 1.6.9 All All All
Application Todd Miller Sudo 1.6.9p20 All All All
Application Todd Miller Sudo 1.6.9p21 All All All
Application Todd Miller Sudo 1.6.9p22 All All All
Application Todd Miller Sudo 1.6.9p23 All All All
Application Todd Miller Sudo 1.7.0 All All All
Application Todd Miller Sudo 1.7.1 All All All
Application Todd Miller Sudo 1.7.10 All All All
Application Todd Miller Sudo 1.7.10p1 All All All
Application Todd Miller Sudo 1.7.10p2 All All All
Application Todd Miller Sudo 1.7.10p3 All All All
Application Todd Miller Sudo 1.7.10p4 All All All
Application Todd Miller Sudo 1.7.10p5 All All All
Application Todd Miller Sudo 1.7.10p6 All All All
Application Todd Miller Sudo 1.7.2 All All All
Application Todd Miller Sudo 1.7.2p1 All All All
Application Todd Miller Sudo 1.7.2p2 All All All
Application Todd Miller Sudo 1.7.2p3 All All All
Application Todd Miller Sudo 1.7.2p4 All All All
Application Todd Miller Sudo 1.7.2p5 All All All
Application Todd Miller Sudo 1.7.2p6 All All All
Application Todd Miller Sudo 1.7.2p7 All All All
Application Todd Miller Sudo 1.7.3b1 All All All
Application Todd Miller Sudo 1.7.4 All All All
Application Todd Miller Sudo 1.7.4p1 All All All
Application Todd Miller Sudo 1.7.4p2 All All All
Application Todd Miller Sudo 1.7.4p3 All All All
Application Todd Miller Sudo 1.7.4p4 All All All
Application Todd Miller Sudo 1.7.4p5 All All All
Application Todd Miller Sudo 1.7.4p6 All All All
Application Todd Miller Sudo 1.7.5 All All All
Application Todd Miller Sudo 1.7.6 All All All
Application Todd Miller Sudo 1.7.6p1 All All All
Application Todd Miller Sudo 1.7.6p2 All All All
Application Todd Miller Sudo 1.7.7 All All All
Application Todd Miller Sudo 1.7.8 All All All
Application Todd Miller Sudo 1.7.8p1 All All All
Application Todd Miller Sudo 1.7.8p2 All All All
Application Todd Miller Sudo 1.7.9 All All All
Application Todd Miller Sudo 1.7.9p1 All All All
Application Todd Miller Sudo 1.8.0 All All All
Application Todd Miller Sudo 1.8.1 All All All
Application Todd Miller Sudo 1.8.1p1 All All All
Application Todd Miller Sudo 1.8.1p2 All All All
Application Todd Miller Sudo 1.8.2 All All All
Application Todd Miller Sudo 1.8.3 All All All
Application Todd Miller Sudo 1.8.3p1 All All All
Application Todd Miller Sudo 1.8.3p2 All All All
Application Todd Miller Sudo 1.8.4 All All All
Application Todd Miller Sudo 1.8.4p1 All All All
Application Todd Miller Sudo 1.8.4p2 All All All
Application Todd Miller Sudo 1.8.4p3 All All All
Application Todd Miller Sudo 1.8.4p4 All All All
Application Todd Miller Sudo 1.8.4p5 All All All
Application Todd Miller Sudo 1.8.5 All All All
Application Todd Miller Sudo 1.8.5p1 All All All
Application Todd Miller Sudo 1.8.5p2 All All All
Application Todd Miller Sudo 1.8.5p3 All All All
Application Todd Miller Sudo 1.8.6 All All All
Application Todd Miller Sudo 1.8.6p1 All All All
Application Todd Miller Sudo 1.8.6p2 All All All
Application Todd Miller Sudo 1.8.6p3 All All All
Application Todd Miller Sudo 1.8.6p4 All All All
Application Todd Miller Sudo 1.8.6p5 All All All
Application Todd Miller Sudo 1.8.6p6 All All All
Application Todd Miller Sudo 1.6 All All All
Application Todd Miller Sudo 1.6.1 All All All
Application Todd Miller Sudo 1.6.2 All All All
Application Todd Miller Sudo 1.6.2p3 All All All
Application Todd Miller Sudo 1.6.3 All All All
Application Todd Miller Sudo 1.6.3_p7 All All All
Application Todd Miller Sudo 1.6.4 All All All
Application Todd Miller Sudo 1.6.4p2 All All All
Application Todd Miller Sudo 1.6.5 All All All
Application Todd Miller Sudo 1.6.6 All All All
Application Todd Miller Sudo 1.6.7 All All All
Application Todd Miller Sudo 1.6.7p5 All All All
Application Todd Miller Sudo 1.6.8 All All All
Application Todd Miller Sudo 1.6.8p12 All All All
Application Todd Miller Sudo 1.6.9 All All All
Application Todd Miller Sudo 1.6.9p20 All All All
Application Todd Miller Sudo 1.6.9p21 All All All
Application Todd Miller Sudo 1.6.9p22 All All All
Application Todd Miller Sudo 1.6.9p23 All All All
Application Todd Miller Sudo 1.7.0 All All All
Application Todd Miller Sudo 1.7.1 All All All
Application Todd Miller Sudo 1.7.10 All All All
Application Todd Miller Sudo 1.7.10p1 All All All
Application Todd Miller Sudo 1.7.10p2 All All All
Application Todd Miller Sudo 1.7.10p3 All All All
Application Todd Miller Sudo 1.7.10p4 All All All
Application Todd Miller Sudo 1.7.10p5 All All All
Application Todd Miller Sudo 1.7.10p6 All All All
Application Todd Miller Sudo 1.7.2 All All All
Application Todd Miller Sudo 1.7.2p1 All All All
Application Todd Miller Sudo 1.7.2p2 All All All
Application Todd Miller Sudo 1.7.2p3 All All All
Application Todd Miller Sudo 1.7.2p4 All All All
Application Todd Miller Sudo 1.7.2p5 All All All
Application Todd Miller Sudo 1.7.2p6 All All All
Application Todd Miller Sudo 1.7.2p7 All All All
Application Todd Miller Sudo 1.7.3b1 All All All
Application Todd Miller Sudo 1.7.4 All All All
Application Todd Miller Sudo 1.7.4p1 All All All
Application Todd Miller Sudo 1.7.4p2 All All All
Application Todd Miller Sudo 1.7.4p3 All All All
Application Todd Miller Sudo 1.7.4p4 All All All
Application Todd Miller Sudo 1.7.4p5 All All All
Application Todd Miller Sudo 1.7.4p6 All All All
Application Todd Miller Sudo 1.7.5 All All All
Application Todd Miller Sudo 1.7.6 All All All
Application Todd Miller Sudo 1.7.6p1 All All All
Application Todd Miller Sudo 1.7.6p2 All All All
Application Todd Miller Sudo 1.7.7 All All All
Application Todd Miller Sudo 1.7.8 All All All
Application Todd Miller Sudo 1.7.8p1 All All All
Application Todd Miller Sudo 1.7.8p2 All All All
Application Todd Miller Sudo 1.7.9 All All All
Application Todd Miller Sudo 1.7.9p1 All All All
Application Todd Miller Sudo 1.8.0 All All All
Application Todd Miller Sudo 1.8.1 All All All
Application Todd Miller Sudo 1.8.1p1 All All All
Application Todd Miller Sudo 1.8.1p2 All All All
Application Todd Miller Sudo 1.8.2 All All All
Application Todd Miller Sudo 1.8.3 All All All
Application Todd Miller Sudo 1.8.3p1 All All All
Application Todd Miller Sudo 1.8.3p2 All All All
Application Todd Miller Sudo 1.8.4 All All All
Application Todd Miller Sudo 1.8.4p1 All All All
Application Todd Miller Sudo 1.8.4p2 All All All
Application Todd Miller Sudo 1.8.4p3 All All All
Application Todd Miller Sudo 1.8.4p4 All All All
Application Todd Miller Sudo 1.8.4p5 All All All
Application Todd Miller Sudo 1.8.5 All All All
Application Todd Miller Sudo 1.8.5p1 All All All
Application Todd Miller Sudo 1.8.5p2 All All All
Application Todd Miller Sudo 1.8.5p3 All All All
Application Todd Miller Sudo 1.8.6 All All All
Application Todd Miller Sudo 1.8.6p1 All All All
Application Todd Miller Sudo 1.8.6p2 All All All
Application Todd Miller Sudo 1.8.6p3 All All All
Application Todd Miller Sudo 1.8.6p4 All All All
Application Todd Miller Sudo 1.8.6p5 All All All
Application Todd Miller Sudo 1.8.6p6 All All All

References

ReferenceSourceLinkTags
oss-security - CVE request: sudo authentication bypass when clock is reset MLIST www.openwall.com
APPLE-SA-2013-09-12-1 OS X Mountain Lion v10.8.5 and Security Update 2013-004 APPLE lists.apple.com
The Slackware Linux Project: Slackware Security Advisories SLACKWARE www.slackware.com
Red Hat Customer Portal REDHAT rhn.redhat.com
About the security content of OS X Yosemite v10.10.5 and Security Update 2015-006 - Apple Support CONFIRM support.apple.com Vendor Advisory
Red Hat Customer Portal REDHAT rhn.redhat.com
sudo: ebd6cc75020f CONFIRM www.sudo.ws Exploit, Patch
Todd Miller Sudo CVE-2013-1775 Local Authentication Bypass Vulnerability BID www.securityfocus.com
openSUSE-SU-2013:0495-1: sudo: fixed two security issues SUSE lists.opensuse.org
90677 OSVDB osvdb.org
About the security content of OS X Mountain Lion v10.8.5 and Security Update 2013-004 CONFIRM support.apple.com
Authentication bypass when clock is reset CONFIRM www.sudo.ws Vendor Advisory
Oracle VM Server for x86 Bulletin - July 2016 CONFIRM www.oracle.com
Debian -- Security Information -- DSA-2642-1 sudo DEBIAN www.debian.org
USN-1754-1: Sudo vulnerability | Ubuntu UBUNTU www.ubuntu.com
sudo: ddf399e3e306 CONFIRM www.sudo.ws Exploit, Patch
APPLE-SA-2015-08-13-2 OS X Yosemite v10.10.5 and Security Update 2015-006 APPLE lists.apple.com
CVE Program record CVE.ORG www.cve.org canonical
NVD vulnerability detail NVD nvd.nist.gov canonical, analysis

Legacy QID Mappings

  • 390227 Oracle Managed Virtualization (VM) Server for x86 Security Update for sudo (OVMSA-2021-0012)
  • 690328 Free Berkeley Software Distribution (FreeBSD) Security Update for sudo (764344fb-8214-11e2-9273-902b343deec9)
© CVE.report 2026 |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

CVE.report and Source URL Uptime Status status.cve.report