🖥️Polkit: CVE-2021-3560

Walkthrough room for CVE-2021-3560

TryHackMe | Polkit: CVE-2021-3560TryHackMe

https://tryhackme.com/room/polkit

Room Attributes	Value
Subscription Required	False [Free]
Type	Walkthrough
Difficulty	Info
Tags	Polkit, Ubuntu 20.04, CVE-2021-3560, Walkthrough

Task 1 - Info Deploy!

Click the green "Start Machine" button to deploy the machine!

No answer needed

Task 2 - Info Important! About Dynamic Flags

Read the information in the task. What is the URL of the website you should submit dynamic flags to?

Reveal Flag 🚩

🚩https://flag.muir.land/

Task 3 - Tutorial Background

In what version of Ubuntu's policykit-1 is CVE-2021-3560 patched?

Reveal Flag 🚩

🚩0.105-26ubuntu1.1

What program can we use to run commands as other users via polkit?

Reveal Flag 🚩

🚩pkexec

Task 4 - Tutorial Exploitation Process

Read the information above

No answer needed

Task 5 - Practical Do it for yourself!

Root Flag

Reveal Flag 🚩

🚩THM{N2I0MTgzZTE4ZWQ0OGY0NjdiNTQ0NTZi}