Logrotate
To exploit logrotate
, we need some requirements that we have to fulfill.
we need
write
permissions on the log fileslogrotate must run as a privileged user or
root
vulnerable versions:
3.8.6
3.11.0
3.15.0
3.18.0
Version
Logrotten
Which option logrotate
uses
Example
2 access.log writable
Run exploit and trigger logrotate by writing on file
For persistance: /bin/dash -p
Also possible to create a root user and log in with it. See references
References
Last updated