Vulnerability & Exploit Database

Back to search

HID discoveryd command_blink_on Unauthenticated RCE

This module exploits an unauthenticated remote command execution vulnerability in the discoveryd service exposed by HID VertX and Edge door controllers. This module was tested successfully on a HID Edge model EH400 with firmware version 2.3.1.603 (Build 04/23/2012).

Free Metasploit Download

Get your copy of the world's leading penetration testing tool

 Download Now

Module Name

exploit/linux/misc/hid_discoveryd_command_blink_on_unauth_rce

Authors

  • Ricky "HeadlessZeke" Lawshae
  • coldfusion39
  • bcoles <bcoles [at] gmail.com>

References

Targets

  • Automatic

Platforms

  • linux

Architectures

  • armle

Reliability

Development

Module Options

To display the available options, load the module within the Metasploit console and run the commands 'show options' or 'show advanced':

msf > use exploit/linux/misc/hid_discoveryd_command_blink_on_unauth_rce msf exploit(hid_discoveryd_command_blink_on_unauth_rce) > show targets ...targets... msf exploit(hid_discoveryd_command_blink_on_unauth_rce) > set TARGET <target-id> msf exploit(hid_discoveryd_command_blink_on_unauth_rce) > show options ...show and set options... msf exploit(hid_discoveryd_command_blink_on_unauth_rce) > exploit