Join GitHub today
Add module Xorg Suid Server privesc for OpenBSD #10913
Module adds the ability to privesc by overwriting crontab in session or spawn an external session. It was tested on OpenBSD 6.3 and 6.4 along with CentOS 7. The exploit did work on some linux configurations.
List the steps needed to make sure this thing works
To get a session with higher privileges
To get an external session with higher privileges
Thanks for the contribution.
It would be best to submit the two changes as two PRs (one for sshexec, one for the new module). This will help speed up the review process and ensure landing one change does not hold up landing the other.
Also, it is required that code in your fork be merged from a unique branch in your repository to master in Rapid7's. Please create a new branch in your fork of framework and resubmit this from that branch.
This helps protect the process, ensure users are aware of commits on the branch being considered for merge, allows for a location for more commits to be offered without mingling with other contributor changes and allows contributors to make progress while a PR is still being reviewed.
Closing based on the this requirement, please do resubmit from a unique branch.