MetaSploit Framework ‘pcap_log’ Plugin Local Privilege Escalation Vulnerability

Summary

Metasploit Framework is prone to a local privilege-escalation vulnerability.

Credit:

The original article can be found at: http://www.securityfocus.com/bid/ 54472


Details

Vulnerable Systems:
 * Metasploit Project Metasploit Framework 3.5.2 and prior

Local attackers can exploit this issue to overwrite arbitrary files in the Metasploit directory. Successful exploits may allow attackers to execute arbitrary code with elevated privileges.

Vendor Status:
Currently we are not aware of any vendor-supplied patches

Disclosure Timeline:
Initial Release:Jul 16 2012

Categories: News