mirror of
https://github.com/rapid7/metasploit-framework
synced 2024-10-29 18:07:27 +01:00
Update tested versions
This commit is contained in:
parent
d1c51bd1b8
commit
fe7ce02dfd
@ -7,7 +7,7 @@
|
||||
|
||||
## Vulnerable Application
|
||||
|
||||
The `lastore-daemon` D-Bus configuration on Deepin Linux 15.5 permits any
|
||||
The `lastore-daemon` D-Bus configuration on Deepin Linux permits any
|
||||
user in the `sudo` group to install arbitrary system packages without
|
||||
providing a password, resulting in code execution as root. By default,
|
||||
the first user created on the system is a member of the `sudo` group.
|
||||
@ -30,8 +30,10 @@
|
||||
</policy>
|
||||
```
|
||||
|
||||
This module has been tested successfully with lastore-daemon version
|
||||
0.9.53-1 on Deepin Linux 15.5 (x64).
|
||||
This module has been tested successfully with lastore-daemon versions:
|
||||
|
||||
* 0.9.53-1 on Deepin Linux 15.5 (x64)
|
||||
* 0.9.66-1 on Deepin Linux 15.7 (x64)
|
||||
|
||||
Deepin Linux is available here:
|
||||
|
||||
|
@ -18,13 +18,14 @@ class MetasploitModule < Msf::Exploit::Local
|
||||
This module attempts to gain root privileges on Deepin Linux systems
|
||||
by using lastore-daemon to install a package.
|
||||
|
||||
The lastore-daemon D-Bus configuration on Deepin Linux 15.5 permits any
|
||||
The lastore-daemon D-Bus configuration on Deepin Linux permits any
|
||||
user in the sudo group to install arbitrary system packages without
|
||||
providing a password, resulting in code execution as root. By default,
|
||||
the first user created on the system is a member of the sudo group.
|
||||
|
||||
This module has been tested successfully with lastore-daemon version
|
||||
0.9.53-1 on Deepin Linux 15.5 (x64).
|
||||
This module has been tested successfully with lastore-daemon versions
|
||||
0.9.53-1 on Deepin Linux 15.5 (x64); and
|
||||
0.9.66-1 on Deepin Linux 15.7 (x64).
|
||||
},
|
||||
'License' => MSF_LICENSE,
|
||||
'Author' =>
|
||||
|
Loading…
Reference in New Issue
Block a user