Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2013-2776

sudo 1.3.5 through 1.7.10p5 and 1.8.0 through 1.8.6p6, when running on systems without /proc or the sysctl function with the tty_tickets option enabled, does not properly validate the controlling terminal device, which allows local users with sudo permissions to hijack the authorization of another terminal via vectors related to connecting to the standard input, output, and error file descriptors of another terminal. NOTE: this is one of three closely-related vulnerabilities that were originally assigned CVE-2013-1776, but they have been SPLIT because of different affected versions.

Published

2013-04-08T17:55:01.127

Last Modified

2025-04-11T00:51:21.963

Status

Deferred

Source

[email protected]

Severity

CVSSv2: 4.4 (MEDIUM)

CVSSv2 Vector

AV:L/AC:M/Au:N/C:P/I:P/A:P

Access Vector: LOCAL
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality Impact: PARTIAL
Integrity Impact: PARTIAL
Availability Impact: PARTIAL

Exploitability Score

3.4

Impact Score

6.4

Weaknesses

Type: Primary
CWE-264

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	todd_miller	sudo	1.3.5	Yes
Application	todd_miller	sudo	1.6	Yes
Application	todd_miller	sudo	1.6.1	Yes
Application	todd_miller	sudo	1.6.2	Yes
Application	todd_miller	sudo	1.6.2p3	Yes
Application	todd_miller	sudo	1.6.3	Yes
Application	todd_miller	sudo	1.6.3_p7	Yes
Application	todd_miller	sudo	1.6.4	Yes
Application	todd_miller	sudo	1.6.4p2	Yes
Application	todd_miller	sudo	1.6.5	Yes
Application	todd_miller	sudo	1.6.6	Yes
Application	todd_miller	sudo	1.6.7	Yes
Application	todd_miller	sudo	1.6.7p5	Yes
Application	todd_miller	sudo	1.6.8	Yes
Application	todd_miller	sudo	1.6.8p12	Yes
Application	todd_miller	sudo	1.6.9	Yes
Application	todd_miller	sudo	1.6.9p20	Yes
Application	todd_miller	sudo	1.6.9p21	Yes
Application	todd_miller	sudo	1.6.9p22	Yes
Application	todd_miller	sudo	1.6.9p23	Yes
Application	todd_miller	sudo	1.7.0	Yes
Application	todd_miller	sudo	1.7.1	Yes
Application	todd_miller	sudo	1.7.2	Yes
Application	todd_miller	sudo	1.7.2p1	Yes
Application	todd_miller	sudo	1.7.2p2	Yes
Application	todd_miller	sudo	1.7.2p3	Yes
Application	todd_miller	sudo	1.7.2p4	Yes
Application	todd_miller	sudo	1.7.2p5	Yes
Application	todd_miller	sudo	1.7.2p6	Yes
Application	todd_miller	sudo	1.7.2p7	Yes
Application	todd_miller	sudo	1.7.3b1	Yes
Application	todd_miller	sudo	1.7.4	Yes
Application	todd_miller	sudo	1.7.4p1	Yes
Application	todd_miller	sudo	1.7.4p2	Yes
Application	todd_miller	sudo	1.7.4p3	Yes
Application	todd_miller	sudo	1.7.4p4	Yes
Application	todd_miller	sudo	1.7.4p5	Yes
Application	todd_miller	sudo	1.7.4p6	Yes
Application	todd_miller	sudo	1.7.5	Yes
Application	todd_miller	sudo	1.7.6	Yes
Application	todd_miller	sudo	1.7.6p1	Yes
Application	todd_miller	sudo	1.7.6p2	Yes
Application	todd_miller	sudo	1.7.7	Yes
Application	todd_miller	sudo	1.7.8	Yes
Application	todd_miller	sudo	1.7.8p1	Yes
Application	todd_miller	sudo	1.7.8p2	Yes
Application	todd_miller	sudo	1.7.9	Yes
Application	todd_miller	sudo	1.7.9p1	Yes
Application	todd_miller	sudo	1.7.10	Yes
Application	todd_miller	sudo	1.7.10p1	No
Application	todd_miller	sudo	1.7.10p2	No
Application	todd_miller	sudo	1.7.10p3	No
Operating System	apple	mac_os_x	≤ 10.10.4	Yes
Application	todd_miller	sudo	1.7.10p4	No
Application	todd_miller	sudo	1.7.10p5	No
Application	todd_miller	sudo	1.8.0	Yes
Application	todd_miller	sudo	1.8.1	Yes
Application	todd_miller	sudo	1.8.1p1	Yes
Application	todd_miller	sudo	1.8.1p2	Yes
Application	todd_miller	sudo	1.8.2	Yes
Application	todd_miller	sudo	1.8.3	Yes
Application	todd_miller	sudo	1.8.3p1	Yes
Application	todd_miller	sudo	1.8.3p2	Yes
Application	todd_miller	sudo	1.8.4	Yes
Application	todd_miller	sudo	1.8.4p1	Yes
Application	todd_miller	sudo	1.8.4p2	Yes
Application	todd_miller	sudo	1.8.4p3	Yes
Application	todd_miller	sudo	1.8.4p4	Yes
Application	todd_miller	sudo	1.8.4p5	Yes
Application	todd_miller	sudo	1.8.5	Yes
Application	todd_miller	sudo	1.8.6	No
Application	todd_miller	sudo	1.8.6p1	No
Application	todd_miller	sudo	1.8.6p2	No
Application	todd_miller	sudo	1.8.6p3	No
Application	todd_miller	sudo	1.8.6p4	No
Application	todd_miller	sudo	1.8.6p5	No

References

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=701839 ([email protected])
http://lists.apple.com/archives/security-announce/2015/Aug/msg00001.html ([email protected])
http://rhn.redhat.com/errata/RHSA-2013-1353.html ([email protected])
http://rhn.redhat.com/errata/RHSA-2013-1701.html ([email protected])
http://www.debian.org/security/2013/dsa-2642 ([email protected])
http://www.openwall.com/lists/oss-security/2013/02/27/31 ([email protected])
http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html ([email protected])
http://www.securityfocus.com/bid/58207 ([email protected])
http://www.securityfocus.com/bid/62741 ([email protected])
http://www.slackware.com/security/viewer.php?l=slackware-security&y=2013&m=slackware-security.517440 ([email protected])
http://www.sudo.ws/repos/sudo/rev/049a12a5cc14 Vendor Advisory ([email protected])
http://www.sudo.ws/repos/sudo/rev/0c0283d1fafa Vendor Advisory ([email protected])
http://www.sudo.ws/sudo/alerts/tty_tickets.html ([email protected])
https://bugs.launchpad.net/ubuntu/+source/sudo/+bug/87023 ([email protected])
https://bugzilla.redhat.com/show_bug.cgi?id=916365 ([email protected])
https://exchange.xforce.ibmcloud.com/vulnerabilities/82453 ([email protected])
https://support.apple.com/kb/HT205031 Vendor Advisory ([email protected])
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=701839 (af854a3a-2127-422b-91ae-364da2661108)
http://lists.apple.com/archives/security-announce/2015/Aug/msg00001.html (af854a3a-2127-422b-91ae-364da2661108)
http://rhn.redhat.com/errata/RHSA-2013-1353.html (af854a3a-2127-422b-91ae-364da2661108)
http://rhn.redhat.com/errata/RHSA-2013-1701.html (af854a3a-2127-422b-91ae-364da2661108)
http://www.debian.org/security/2013/dsa-2642 (af854a3a-2127-422b-91ae-364da2661108)
http://www.openwall.com/lists/oss-security/2013/02/27/31 (af854a3a-2127-422b-91ae-364da2661108)
http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html (af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/58207 (af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/62741 (af854a3a-2127-422b-91ae-364da2661108)
http://www.slackware.com/security/viewer.php?l=slackware-security&y=2013&m=slackware-security.517440 (af854a3a-2127-422b-91ae-364da2661108)
http://www.sudo.ws/repos/sudo/rev/049a12a5cc14 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.sudo.ws/repos/sudo/rev/0c0283d1fafa Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.sudo.ws/sudo/alerts/tty_tickets.html (af854a3a-2127-422b-91ae-364da2661108)
https://bugs.launchpad.net/ubuntu/+source/sudo/+bug/87023 (af854a3a-2127-422b-91ae-364da2661108)
https://bugzilla.redhat.com/show_bug.cgi?id=916365 (af854a3a-2127-422b-91ae-364da2661108)
https://exchange.xforce.ibmcloud.com/vulnerabilities/82453 (af854a3a-2127-422b-91ae-364da2661108)
https://support.apple.com/kb/HT205031 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)