CVE-2013-1775

Mac OS X Sudo Password Bypass

Title source: metasploit

Description

sudo 1.6.0 through 1.7.10p6 and sudo 1.8.0 through 1.8.6p6 allows local users or physically proximate attackers to bypass intended time restrictions and retain privileges without re-authenticating by setting the system clock and sudo user timestamp to the epoch.

Exploits (5)

exploitdb WORKING POC VERIFIED

by David Kennedy (ReL1K) · pythonlocalosx

https://www.exploit-db.com/exploits/27965

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by Metasploit · rubylocalosx

https://www.exploit-db.com/exploits/27944

View Code ZIP pw:eip

nomisec WORKING POC

by bekhzod0725 · poc

https://github.com/bekhzod0725/perl-CVE-2013-1775

View Code ZIP pw:eip

github NO CODE

by gitcollect · cpoc

https://github.com/gitcollect/CVE_Exploits/tree/master/cve-2013-1775

View Code ZIP pw:eip

metasploit WORKING POC NORMAL

by Todd C. Miller, joev, juan vazquez · rubypocosx

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/osx/local/sudo_password_bypass.rb

View Code ZIP pw:eip

References (17)

[Vendor Advisory] http://rhn.redhat.com/errata/RHSA-2013-1353.html

[Vendor Advisory] http://rhn.redhat.com/errata/RHSA-2013-1701.html

[Mailing List] http://lists.apple.com/archives/security-announce/2013/Sep/msg00002.html

[Mailing List] http://lists.apple.com/archives/security-announce/2015/Aug/msg00001.html

[Mailing List] http://lists.opensuse.org/opensuse-updates/2013-03/msg00066.html

[Third Party Advisory, VDB Entry] http://osvdb.org/90677

[Vendor Advisory] http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/58203

[Vendor Advisory] http://www.slackware.com/security/viewer.php?l=slackware-security&y=2013&m=slackware-security.517440

[Exploit, Patch] http://www.sudo.ws/repos/sudo/rev/ddf399e3e306

[Exploit, Patch] http://www.sudo.ws/repos/sudo/rev/ebd6cc75020f

[Vendor Advisory] http://www.sudo.ws/sudo/alerts/epoch_ticket.html

[Vendor Advisory] http://www.ubuntu.com/usn/USN-1754-1

[Vendor Advisory] https://support.apple.com/kb/HT205031

[Third Party Advisory] http://www.debian.org/security/2013/dsa-2642

[Mailing List] http://www.openwall.com/lists/oss-security/2013/02/27/22

[Vendor Advisory] http://support.apple.com/kb/HT5880

Scores

EPSS 0.0813

EPSS Percentile 92.2%

Details

CWE

CWE-264

Status published

Products (50)

apple/mac_os_x < 10.10.4

todd_miller/sudo 1.6

todd_miller/sudo 1.6.1

todd_miller/sudo 1.6.2

todd_miller/sudo 1.6.2p3

todd_miller/sudo 1.6.3

todd_miller/sudo 1.6.3_p7

todd_miller/sudo 1.6.4

todd_miller/sudo 1.6.4p2

todd_miller/sudo 1.6.5

... and 40 more

Published Mar 05, 2013

Tracked Since Feb 18, 2026