Skip to content

Latest commit

 

History

History
79 lines (46 loc) · 2.52 KB

polkit-cve-2021-3560.md

File metadata and controls

79 lines (46 loc) · 2.52 KB
Raw
description
Walkthrough room for CVE-2021-3560

🖥 Polkit: CVE-2021-3560

{% embed url="https://tryhackme.com/room/polkit" %} https://tryhackme.com/room/polkit {% endembed %}

Room Attributes Value
Subscription Required False [Free]
Type Walkthrough
Difficulty Info
Tags Polkit, Ubuntu 20.04, CVE-2021-3560, Walkthrough

Task 1 - Info Deploy!

Click the green "Start Machine" button to deploy the machine!

{% hint style="success" %} No answer needed {% endhint %}

Task 2 - Info Important! About Dynamic Flags

Read the information in the task. What is the URL of the website you should submit dynamic flags to?

Reveal Flag 🚩

🚩https://flag.muir.land/

Task 3 - Tutorial Background

In what version of Ubuntu's policykit-1 is CVE-2021-3560 patched?

Reveal Flag 🚩

🚩0.105-26ubuntu1.1

What program can we use to run commands as other users via polkit?

Reveal Flag 🚩

🚩pkexec

Task 4 - Tutorial Exploitation Process

Read the information above

{% hint style="success" %} No answer needed {% endhint %}

Task 5 - Practical Do it for yourself!

Root Flag

Reveal Flag 🚩

🚩THM{N2I0MTgzZTE4ZWQ0OGY0NjdiNTQ0NTZi}