Can anyone help on getting root access to Calamity? I have already spawn a shell through GDB but it doesn’t help as only the vulnerable app has the suid parameter.
The problem that I have is to trigger the function which can redirect to the vulnerable function, I have already bypassed the first check but stuck with the second one.
Can anyone help on getting root access to Calamity? I have already spawn a shell through GDB but it doesn’t help as only the vulnerable app has the suid parameter.
The problem that I have is to trigger the function which can redirect to the vulnerable function, I have already bypassed the first check but stuck with the second one.
Many thanks.
Just bypass that check in GDB, for further analyzes.
so being new to gdb…I see an fopen fails for a file in my working directory (full qualified and/or not). Running the app without gdb and it finds it. I tried directory to change the search directory. If this is part of the CTF, then just tell me that. If not, how does GDB ‘restrict’ apps seeing files (chroot-like ?)