[kwlug-disc] Identify this exploit?
Erik Schnetter
schnetter at gmail.com
Sat Dec 28 15:03:35 EST 2019
On Sat, Dec 28, 2019 at 2:33 PM Paul Nijjar via kwlug-disc
<kwlug-disc at kwlug.org> wrote:
>
>
> So it is a generic attack and not a particular CVE they are trying to
> exploit? It is weird that they are choosing that particular number of
> traversals to get to /etc/passwd.
Try:
cd /usr/bin
ls -l ../../../../../../../../../../../../etc/passwd
If you are in the root directory and go to ".." from there, you'll end
up in the root directory again. A convenient feature. You just need
enough ".." in your path.
-erik
--
Erik Schnetter <schnetter at gmail.com>
http://www.perimeterinstitute.ca/personal/eschnetter/
More information about the kwlug-disc
mailing list