icon

Sudo Screen Privilege Escalation

Last modified: 2023-02-05

Sudo screen command might be vulnerable to privilege escalation (PrivEsc).

Investigation

sudo -l

(root) /usr/bin/screen -r testsession

If we can execute "screen" command as root, we can spawn a root shell from the screen session.


Exploitation

First execute "screen" command as root, then a screen session will be start.
Now we can spawn a root shell by pressing “Ctrl+a+c” in the screen session.