Published: 12/02/2020 Updated: 19/02/2020

CVSS v2 Base Score: 6.9 | Impact Score: 10 | Exploitability Score: 3.4

CVSS v3 Base Score: 7 | Impact Score: 5.9 | Exploitability Score: 1

VMScore: 614

Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C

A Privilege Escalation Vulnerability exists in Sprite Software Spritebud 1.3.24 and 1.3.28 and Backup 2.5.4105 and 2.5.4108 on LG Android smartphones due to a race condition in the spritebud daemon, which could let a local malicious user obtain root privileges.

Vulnerable Product	Search on Vulmon	Subscribe to Product
spritesoftware spritebackup 2.5.4105
spritesoftware spritebackup 2.5.4108
spritesoftware spritebud 1.3.24
spritesoftware spritebud 1.3.28

A race condition in Sprite Software's backup software on Android devices allows for code execution as root ...

LG Root Exploit

LGPwn LG Root Exploit Author: jcase@cunninglogiccom Special Thanks: Juggie, for pointing out an odd binary in an update (spritebud), that lead to me finding this vulnerability Subject: Race condition in Sprite Software?s backup software, installed by OEM on LG Android devices CVE ID: CVE-2013-3685 Effect: Locally exploited vulnerability with minimal device user interaction w

CWE-362 https://seclists.org/fulldisclosure/2013/Jun/196 http://www.securityfocus.com/bid/60749 https://exchange.xforce.ibmcloud.com/vulnerabilities/85296 https://androidvulnerabilities.org/all https://nvd.nist.gov https://github.com/CunningLogic/LGPwn https://packetstormsecurity.com/files/122145/Sprite-Software-Android-Race-Condition.html

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2013-3685

Vulnerability Summary

Vulnerability Trend

Exploits

Github Repositories

References

Vulmon Search

About

Products

Connect