Level Goal

To gain access to the next level, you should use the setuid binary in the home directory. Execute it without arguments to find out how to use it. The password for this level can be found in the usual place (/etc/bandit_pass/bandit20), after you have used the setuid binary.

Commands you may need to solve this level

None provided

Helpful Reading Material

setuid on Wikipedia

Like the description says, use the command without any arguments to figure out how it works.

./bandit20-do

This will tell us that we can Run a command as another user and give us the example of ./bandit20-do id. Let's use this to cat the password file from /etc/bandit_pass/bandit20

./bandit20-do cat /etc/bandit_pass/bandit20

This will display the password necessary to log in to bandit20.

{Code::Blue.Development}

Wednesday, July 1, 2015

OverTheWire - Bandit - Level 20

Level Goal

Commands you may need to solve this level

Helpful Reading Material

No comments:

Post a Comment