← Volver a CVEs
CVE-2017-5671
N/ADescripcion
Honeywell Intermec PM23, PM42, PM43, PC23, PC43, PD43, and PC42 industrial printers before 10.11.013310 and 10.12.x before 10.12.013309 have /usr/bin/lua installed setuid to the itadmin account, which allows local users to conduct a BusyBox jailbreak attack and obtain root privileges by overwriting the /etc/shadow file.
Detalles CVE
Puntuacion CVSS v3.1N/A
Publicado3/29/2017
Ultima modificacion4/20/2025
Fuentenvd
Avistamientos honeypot0
Productos afectados
honeywell:intermec_pc23honeywell:intermec_pc23_firmwarehoneywell:intermec_pc42honeywell:intermec_pc42_firmwarehoneywell:intermec_pc43honeywell:intermec_pc43_firmwarehoneywell:intermec_pd43honeywell:intermec_pd43_firmwarehoneywell:intermec_pm23honeywell:intermec_pm23_firmwarehoneywell:intermec_pm42honeywell:intermec_pm42_firmwarehoneywell:intermec_pm43honeywell:intermec_pm43_firmware
Debilidades (CWE)
CWE-269
Referencias
http://apps.intermec.com/downloads/eps_download/Firmware%20Release%20Notes%20x10_11_013310.pdf(cve@mitre.org)
http://www.securityfocus.com/bid/97236(cve@mitre.org)
https://akerva.com/blog/intermec-industrial-printers-local-root-with-busybox-jailbreak/(cve@mitre.org)
https://www.exploit-db.com/exploits/41754/(cve@mitre.org)
http://apps.intermec.com/downloads/eps_download/Firmware%20Release%20Notes%20x10_11_013310.pdf(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/97236(af854a3a-2127-422b-91ae-364da2661108)
https://akerva.com/blog/intermec-industrial-printers-local-root-with-busybox-jailbreak/(af854a3a-2127-422b-91ae-364da2661108)
https://github.com/kmkz/exploit/blob/master/CVE-2017-5671-Credits.pdf(af854a3a-2127-422b-91ae-364da2661108)
https://www.exploit-db.com/exploits/41754/(af854a3a-2127-422b-91ae-364da2661108)
Correlaciones IOC
Sin correlaciones registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.