New local priv esc exploit on exploit-db affects BT5R1

view full story

http://www.backtrack-linux.org – On exploit-db.com, a local priv esc exploit was released today jan 23rd, 2012. It affects kernel 2.6.39 > according to advisories on secunia and securityfocus. The author has also demonstrated this to work on kernel version 3.2.0. I Tried this on BT5R1 as a regular non-privileged user and the exploit got me root. I haven't done a dist-upgrade since i had BT5r1 months ago (for personal reasons), so i'm wondering if anyone else might have already updated theirs and verified this to work on an up-to-date BT5. (HowTos)