MOABI : Continuous Software Improvement

CVE-2009-5151
Description	The stub component of Absolute Computrace Agent V70.785 executes code from a disk's inter-partition space without requiring a digital signature for that code, which allows attackers to execute code on the BIOS. This allows a privileged local user to achieve persistent control of BIOS behavior, independent of later disk changes.
Impact	CVSS v3 : 6.7 MEDIUM CVSS v2 : 7.2 HIGH
Type	CWE-284
Attack Vector	CVSSv2 Vector : AV:L/AC:L/Au:N/C:C/I:C/A:C
Quick links	CVE, NVD, CERT, Metasploit, Exploit-db, Fulldisc, Bugtraq, Microsoft, Red Hat, Debian, GitHub code/issues, Google
References	https://www.coresecurity.com/system/files/publications/2016/05/Paper-Deactivate-the-Rootkit-AOrtega-ASacco.pdf