dash Backdoor
If you run a program which has the SUID bit set, then you have the rights of the user owning that file. That can be useful for ping or passwd, but probably isnโt for a shell. Thatโs why you canโt set the SUID bit on the bash. The โdashโ, however, allows that
To find SUID binaries:
find / ( -perm -4000 -o -perm -2000 ) -type f -exec ls -la {} ;
Youโll get a rootshell by simply executing ping4.
Last updated