Information
Room#
- Name: Baron Samedit
- Profile: tryhackme.com
- Difficulty: Easy
- Description: A tutorial room exploring CVE-2021-3156 in the Unix Sudo Program. Room Three in the SudoVulns Series
Write-up
Baron Samedit#
After compiling the exploit, what is the name of the executable created (blurred in the screenshots above)?
Answer:
sudo-hax-me-a-sandwich
Funny name for the exploit:
1 | tryhackme@CVE-2021-3156:~/Exploit$ make |
Run the exploit!
You should now have a root shell -- what is the flag in /root/flag.txt?
After compiling the exploit we just have to run it to exploit CVE-2021-3156:
Answer:
THM{NmU4OWYwMWJmMjkxMDdiYTU4MWIxNWVk}
1 | tryhackme@CVE-2021-3156:~/Exploit$ ./sudo-hax-me-a-sandwich 0 |