1
mirror of https://github.com/rapid7/metasploit-framework synced 2024-10-29 18:07:27 +01:00

Update tested versions

This commit is contained in:
Brendan Coles 2018-10-04 21:13:21 +00:00
parent d1c51bd1b8
commit fe7ce02dfd
2 changed files with 9 additions and 6 deletions

View File

@ -7,7 +7,7 @@
## Vulnerable Application
The `lastore-daemon` D-Bus configuration on Deepin Linux 15.5 permits any
The `lastore-daemon` D-Bus configuration on Deepin Linux permits any
user in the `sudo` group to install arbitrary system packages without
providing a password, resulting in code execution as root. By default,
the first user created on the system is a member of the `sudo` group.
@ -30,8 +30,10 @@
</policy>
```
This module has been tested successfully with lastore-daemon version
0.9.53-1 on Deepin Linux 15.5 (x64).
This module has been tested successfully with lastore-daemon versions:
* 0.9.53-1 on Deepin Linux 15.5 (x64)
* 0.9.66-1 on Deepin Linux 15.7 (x64)
Deepin Linux is available here:

View File

@ -18,13 +18,14 @@ class MetasploitModule < Msf::Exploit::Local
This module attempts to gain root privileges on Deepin Linux systems
by using lastore-daemon to install a package.
The lastore-daemon D-Bus configuration on Deepin Linux 15.5 permits any
The lastore-daemon D-Bus configuration on Deepin Linux permits any
user in the sudo group to install arbitrary system packages without
providing a password, resulting in code execution as root. By default,
the first user created on the system is a member of the sudo group.
This module has been tested successfully with lastore-daemon version
0.9.53-1 on Deepin Linux 15.5 (x64).
This module has been tested successfully with lastore-daemon versions
0.9.53-1 on Deepin Linux 15.5 (x64); and
0.9.66-1 on Deepin Linux 15.7 (x64).
},
'License' => MSF_LICENSE,
'Author' =>