Update module description

rapid7 · Nov 1, 2019 · b08e031 · b08e031
1 parent c6e739c
commit b08e031
Showing 1 changed file with 7 additions and 2 deletions.
diff --git a/modules/exploits/linux/local/omniresolve_suid_priv_esc.rb b/modules/exploits/linux/local/omniresolve_suid_priv_esc.rb
@@ -16,8 +16,13 @@ def initialize(info = {})
     super(update_info(info,
       'Name'           => 'Micro Focus (HPE) Data Protector SUID Privilege Escalation',
       'Description'    => %q{
-        This module exploits the trusted `$PATH` environment variable
-        of the `omniresolve` SUID binary.
+        This module exploits the trusted `$PATH` environment
+        variable of the SUID binary `omniresolve` in
+        Micro Focus (HPE) Data Protector A.10.40 and prior.
+
+        The `omniresolve` executable calls the `oracleasm` binary using
+        a relative path and the trusted environment `$PATH`, which allows
+        an attacker to execute a custom binary with `root` privileges.
 
         This module has been successfully tested on:
         HPE Data Protector A.09.07: OMNIRESOLVE, internal build 110, built on Thu Aug 11 14:52:38 2016;