Sudo Screen Privilege Escalation
Last modified: 2023-02-05
Privilege Escalation
Sudo screen command might be vulnerable to privilege escalation (PrivEsc).
Investigation
sudo -l
(root) /usr/bin/screen -r testsession
If we can execute "screen" command as root, we can spawn a root shell from the screen session.
Exploitation
First execute "screen" command as root, then a screen session will be start.
Now we can spawn a root shell by pressing “Ctrl+a+c” in the screen session.