search

πŸ–₯️Sudo Security Bypass: CVE-2019-14287

A tutorial room exploring CVE-2019-14287 in the Unix Sudo Program. Room One in the SudoVulns Series

LogoSudo Security BypassTryHackMechevron-right
https://tryhackme.com/room/sudovulnsbypassarrow-up-right

Room Attributes
Value

Subscription Required

False [Free]

Type

Walkthrough

Difficulty

Info

Tags

SudoVulns, CVE-2019-14287, Sudo, Beginner

hashtag
Task 1 - Deploy!

hashtag
Deployed!

circle-check

No answer needed

hashtag
Task 2 - Security Bypass

hashtag
What command are you allowed to run with sudo?

circle-exclamation

HINT: Try using: sudo -l to see your privileges

chevron-rightReveal Flag 🚩hashtag

🚩/bin/bash

hashtag
What is the flag in /root/root.txt?

circle-exclamation

HINT: Get root using sudo (as a user with UID -1) with the command you found in the last question, then use cat /root/root.txt to get the flag.

chevron-rightReveal Flag 🚩hashtag

🚩THM{l33t_s3cur1ty_bypass}

PreviousCVE WalkthroughsNextSudo Buffer Overflow: CVE-2019-18634

Last updated