Hacker News new | ask | show | jobs
by mtlmtlmtlmtl 964 days ago
If you can apt-get stuff, why would you be trying to exploit sudo? Even assuming apt-get was the only thing you could run as root, that would essentially allow arbitrary filesystem changes anyway. Escalating to full root from that would be trivial.
2 comments
kaba0 964 days ago
You can do that on an identical system you have access to. Then you discover the necessary vulnerability and apply it on the target system.
link
codetrotter 964 days ago
You don’t need to be root to retrieve the debug symbols from apt if the debug symbols were in the apt repository

Something like

    apt-get download sudo-rs-dbgsym

    mkdir -p ~/tmp/

    dpkg -x sudo-rs-dbgsym.deb ~/tmp/
should provide what you need I think
link