A Privilege Escalation Vulnerability exists in Sprite Software Spritebud 1.3.24 and 1.3.28 and Backup 2.5.4105 and 2.5.4108 on LG Android smartphones due to a race condition in the spritebud daemon, which could let a local malicious user obtain root privileges.
References
Link | Resource |
---|---|
http://www.securityfocus.com/bid/60749 | Third Party Advisory VDB Entry |
https://androidvulnerabilities.org/all | Third Party Advisory |
https://exchange.xforce.ibmcloud.com/vulnerabilities/85296 | Third Party Advisory VDB Entry |
https://seclists.org/fulldisclosure/2013/Jun/196 | Exploit Mailing List Third Party Advisory |
Configurations
Configuration 1 (hide)
AND |
|
History
No history.
Information
Published : 2020-02-12 16:15
Updated : 2024-02-28 17:28
NVD link : CVE-2013-3685
Mitre link : CVE-2013-3685
CVE.ORG link : CVE-2013-3685
JSON object : View
Products Affected
lg
- ls970
- f240s
- p780
- f200l
- f100k
- f180l
- su870
- f120k
- f160s
- f200s
- us780
- p875h
- e971
- su540
- f180s
- e975t
- e975k
- f260l
- f100l
- p880
- e977
- f180k
- f240l
- e973
- f160lv
- f260s
- f120l
- l21_
- f160k
- lg870
- ls860
- f260k
- p760
- f160l
- f240k
- p769
- f120s
- p875
- e975
- f200k
- f100s
- p940
- e976
spritesoftware
- spritebud
- spritebackup
CWE
CWE-362
Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')