header-logo
Suggest Exploit
vendor:
Battery Life Toolkit
by:
7.5
CVSS
HIGH
Local Privilege Escalation
264
CWE
Product Name: Battery Life Toolkit
Affected Version From: 1.0.9
Affected Version To:
Patch Exists: NO
Related CWE:
CPE: a:battery_life_toolkit:battery_life_toolkit:1.0.9
Metasploit:
Other Scripts:
Platforms Tested:

Local Privilege Escalation Vulnerability in Battery Life Toolkit (BLTK)

A local attacker can exploit this issue to execute arbitrary code with superuser privileges, resulting in the complete compromise of the affected computer.

Mitigation:

Apply the vendor-supplied patch or upgrade to a non-vulnerable version of the software.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/37996/info

Battery Life Toolkit (BLTK) is prone to a local privilege-escalation vulnerability.

A local attacker can exploit this issue to execute arbitrary code with superuser privileges, resulting in the complete compromise of the affected computer.

This issue affects BLTK 1.0.9; other versions may be vulnerable as well.

The following proof of concept is available:

/usr/lib/bltk/bin/bltk_sudo /bin/bash

Navigation

Suggest Exploit

Services By CQR