Unknown SUID Binary
An unknown SUID binary has been discovered; /opt/fileS
/Practice/MZEEAV/4-Post_Enumeration/attachments/{51E24C6B-B237-4C40-B60A-0B01E66FCDA9}.png)
It’s not even readable. Only executable
www-data@mzeeav:/var/www$ /opt/fileS
.
./html
./html/upload
./html/upload/shell.php
./html/upload/wget.exe
./html/upload/whoami.exe
./html/upload/index.html
./html/listing.php
./html/upload.php
./html/backups
./html/backups/backup.zip
./html/index.htmlExecuting the SUID binary appears to use the find command to recursively list files in current directory
www-data@mzeeav:/var/www$ find
.
./html
./html/upload
./html/upload/shell.php
./html/upload/wget.exe
./html/upload/whoami.exe
./html/upload/index.html
./html/listing.php
./html/upload.php
./html/backups
./html/backups/backup.zip
./html/index.htmlLike so
/Practice/MZEEAV/4-Post_Enumeration/attachments/{8F23E914-E31E-4706-86F1-36BFEC01AFF2}.png)
According to GTFObins, find with SUID bit set can be abused for privilege escalation