Amazon Linux Local Security Checks : Amazon Linux: Security Advisory (ALAS-2013-259)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.120542

Categoría: Amazon Linux Local Security Checks

Título: Amazon Linux: Security Advisory (ALAS-2013-259)

Resumen: The remote host is missing an update for the 'sudo' package(s) announced via the ALAS-2013-259 advisory.

Descripción: Summary:
The remote host is missing an update for the 'sudo' package(s) announced via the ALAS-2013-259 advisory.

Vulnerability Insight:
A flaw was found in the way sudo handled time stamp files. An attacker able to run code as a local user and with the ability to control the system clock could possibly gain additional privileges by running commands that the victim user was allowed to run via sudo, without knowing the victim's password. (CVE-2013-1775)

It was found that sudo did not properly validate the controlling terminal device when the tty_tickets option was enabled in the /etc/sudoers file. An attacker able to run code as a local user could possibly gain additional privileges by running commands that the victim user was allowed to run via sudo, without knowing the victim's password. (CVE-2013-2776, CVE-2013-2777)

Affected Software/OS:
'sudo' package(s) on Amazon Linux.

Solution:
Please install the updated package(s).

CVSS Score:
6.9

CVSS Vector:
AV:L/AC:M/Au:N/C:C/I:C/A:C

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2013-1775
http://lists.apple.com/archives/security-announce/2013/Sep/msg00002.html
http://lists.apple.com/archives/security-announce/2015/Aug/msg00001.html
BugTraq ID: 58203
http://www.securityfocus.com/bid/58203
Debian Security Information: DSA-2642 (Google Search)
http://www.debian.org/security/2013/dsa-2642
http://www.openwall.com/lists/oss-security/2013/02/27/22
http://osvdb.org/90677
RedHat Security Advisories: RHSA-2013:1353
http://rhn.redhat.com/errata/RHSA-2013-1353.html
RedHat Security Advisories: RHSA-2013:1701
http://rhn.redhat.com/errata/RHSA-2013-1701.html
http://www.slackware.com/security/viewer.php?l=slackware-security&y=2013&m=slackware-security.517440
SuSE Security Announcement: openSUSE-SU-2013:0495 (Google Search)
http://lists.opensuse.org/opensuse-updates/2013-03/msg00066.html
http://www.ubuntu.com/usn/USN-1754-1
Common Vulnerability Exposure (CVE) ID: CVE-2013-2776
BugTraq ID: 58207
http://www.securityfocus.com/bid/58207
BugTraq ID: 62741
http://www.securityfocus.com/bid/62741
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=701839
https://bugs.launchpad.net/ubuntu/+source/sudo/+bug/87023
https://bugzilla.redhat.com/show_bug.cgi?id=916365
http://www.openwall.com/lists/oss-security/2013/02/27/31
XForce ISS Database: sudo-ttytickets-sec-bypass(82453)
https://exchange.xforce.ibmcloud.com/vulnerabilities/82453
Common Vulnerability Exposure (CVE) ID: CVE-2013-2777

Copyright Copyright (C) 2015 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.120542
Categoría:	Amazon Linux Local Security Checks
Título:	Amazon Linux: Security Advisory (ALAS-2013-259)
Resumen:	The remote host is missing an update for the 'sudo' package(s) announced via the ALAS-2013-259 advisory.
Descripción:	Summary: The remote host is missing an update for the 'sudo' package(s) announced via the ALAS-2013-259 advisory. Vulnerability Insight: A flaw was found in the way sudo handled time stamp files. An attacker able to run code as a local user and with the ability to control the system clock could possibly gain additional privileges by running commands that the victim user was allowed to run via sudo, without knowing the victim's password. (CVE-2013-1775) It was found that sudo did not properly validate the controlling terminal device when the tty_tickets option was enabled in the /etc/sudoers file. An attacker able to run code as a local user could possibly gain additional privileges by running commands that the victim user was allowed to run via sudo, without knowing the victim's password. (CVE-2013-2776, CVE-2013-2777) Affected Software/OS: 'sudo' package(s) on Amazon Linux. Solution: Please install the updated package(s). CVSS Score: 6.9 CVSS Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2013-1775 http://lists.apple.com/archives/security-announce/2013/Sep/msg00002.html http://lists.apple.com/archives/security-announce/2015/Aug/msg00001.html BugTraq ID: 58203 http://www.securityfocus.com/bid/58203 Debian Security Information: DSA-2642 (Google Search) http://www.debian.org/security/2013/dsa-2642 http://www.openwall.com/lists/oss-security/2013/02/27/22 http://osvdb.org/90677 RedHat Security Advisories: RHSA-2013:1353 http://rhn.redhat.com/errata/RHSA-2013-1353.html RedHat Security Advisories: RHSA-2013:1701 http://rhn.redhat.com/errata/RHSA-2013-1701.html http://www.slackware.com/security/viewer.php?l=slackware-security&y=2013&m=slackware-security.517440 SuSE Security Announcement: openSUSE-SU-2013:0495 (Google Search) http://lists.opensuse.org/opensuse-updates/2013-03/msg00066.html http://www.ubuntu.com/usn/USN-1754-1 Common Vulnerability Exposure (CVE) ID: CVE-2013-2776 BugTraq ID: 58207 http://www.securityfocus.com/bid/58207 BugTraq ID: 62741 http://www.securityfocus.com/bid/62741 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=701839 https://bugs.launchpad.net/ubuntu/+source/sudo/+bug/87023 https://bugzilla.redhat.com/show_bug.cgi?id=916365 http://www.openwall.com/lists/oss-security/2013/02/27/31 XForce ISS Database: sudo-ttytickets-sec-bypass(82453) https://exchange.xforce.ibmcloud.com/vulnerabilities/82453 Common Vulnerability Exposure (CVE) ID: CVE-2013-2777
Copyright	Copyright (C) 2015 Greenbone AG