CVE-2013-1775 PoC — Todd Miller Sudo 本地验证绕过漏洞

Source

https://github.com/bekhzod0725/perl-CVE-2013-1775

Associated Vulnerability

Title:Todd Miller Sudo 本地验证绕过漏洞 (CVE-2013-1775)
Description:Sudo是软件开发者Todd C. Miller所研发的一套用于类Unix操作系统下并允许用户通过安全的方式使用特殊的权限执行命令的程序。 Todd Miller‘sudo’1.6.0至1.7.10p7版本以及1.8.0至1.8.6p7版本中存在本地验证绕过漏洞。本地攻击者利用该漏洞绕过验证机制进而获得未授权访问权限。成功的利用可导致其他攻击。

Description

CVE-2013-1775 Exploit written in Perl

Readme

# CVE-2013-1775
# Apple Mac OSX 10.8.4 - Privilege Escalation

Perl version of CVE-2013-1775 Apple Mac OSX 10.8.4 - Privelege Escalation exploit.

References:
 - https://www.exploit-db.com/exploits/27965/
 - https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/osx/local/sudo_password_bypass.rb
 - http://www.exploit-db.com/exploits/27944/

File Snapshot


 [4.0K]  /data/pocs/2509269734796e2599176db15fdd987c8daf6a77
├── [ 888]  exploit.pl
└── [ 363]  README.md

0 directories, 2 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!