Nebula-level00

Level00
http://exploit-exercises.com/nebula/level00
login: level00
pass: level00
Problem:
This level requires you to find a Set User ID program that will run
as the “flag00” account. You could also find this by carefully looking
in top level directories in / for suspicious looking directories.
Alternatively, look at the find man page.

Solution:

find / -type f -executable -user -perm -4000 2/dev/null

This finds a file which is executable and under the user permission
which has a suid bit set and we all redirecting the errors to /dev/null

Then execute getflag to win this level.

PS: You wont get any flags while running getflag command 😛

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s