Today we will start here:
I downloaded 'latest available version' (of VM):
After a while I decided to check log files of webserver (sometimes we can find interesting hints there;)):
Hm... ;] Looks interesting, isn't it? ;)
Next step:
Still nothing...
When I was looking for the reason, this line appeared in the log file:
Well... ;] Again Neo!
Good! We got it. ;] So the last stage was to prepare a valid reverse shell. I used base64'd version of one of the bash-oneliners available here.
Checking:
If you are looking for a root - try here:
Maybe you'll find it useful. ;)
See you next time.
Cheers
Wow, really good one
OdpowiedzUsuń@super: thanks for watching;) tbh it was pretty fast one, from vm download to rce in ~3h... ;)
Usuńimpressive man, ive been finding some stuff here and there (not RCEs lol), wanna chat a bit about vuln research?
OdpowiedzUsuń@super: thanks, but no. I'm too shy. ;)
Usuń