CVE-2013-1776 | Vulnerability Database | Aqua Security

sudo 1.3.5 through 1.7.10 and 1.8.0 through 1.8.5, when the tty_tickets option is enabled, does not properly validate the controlling terminal device, which allows local users with sudo permissions to hijack the authorization of another terminal via vectors related to connecting to the standard input, output, and error file descriptors of another terminal. NOTE: this is one of three closely-related vulnerabilities that were originally assigned CVE-2013-1776, but they have been SPLIT because of different affected versions.

Affected Software

Name	Vendor	Start Version	End Version
Mac_os_x	Apple	*	10.10.4 (including)
Sudo	Ubuntu	devel	*
Sudo	Ubuntu	hardy	*
Sudo	Ubuntu	lucid	*
Sudo	Ubuntu	oneiric	*
Sudo	Ubuntu	precise	*
Sudo	Ubuntu	quantal	*
Sudo	Ubuntu	upstream	*
Red Hat Enterprise Linux 5	RedHat	sudo-0:1.7.2p1-28.el5	*
Red Hat Enterprise Linux 6	RedHat	sudo-0:1.8.6p3-7.el6	*

References

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=701839
http://lists.apple.com/archives/security-announce/2015/Aug/msg00001.html
http://lists.opensuse.org/opensuse-updates/2013-03/msg00066.html
http://rhn.redhat.com/errata/RHSA-2013-1353.html
http://www.debian.org/security/2013/dsa-2642
http://www.openwall.com/lists/oss-security/2013/02/27/31
http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html
http://www.securityfocus.com/bid/58207
http://www.slackware.com/security/viewer.php?l=slackware-security\u0026y=2013\u0026m=slackware-security.517440
http://www.sudo.ws/repos/sudo/rev/632f8e028191
http://www.sudo.ws/repos/sudo/rev/6b22be4d09f0
http://www.sudo.ws/sudo/alerts/tty_tickets.html
https://bugs.launchpad.net/ubuntu/+source/sudo/+bug/87023
https://bugzilla.redhat.com/show_bug.cgi?id=916365
https://exchange.xforce.ibmcloud.com/vulnerabilities/82453
https://support.apple.com/kb/HT205031

NVD	https://nvd.nist.gov/vuln/detail/CVE-2013-1776
CWE	https://cwe.mitre.org/data/definitions/264.html