Exploiting Tar Wildcards
- by Vince
-
in Blog
-
Hits: 2854
This is kind of an interesting exploit because it's one of those things where you really don't understand the consequences of your actions. Granted, this is a made up scenario in part but the exploitation part is not made up -- it's the real deal.
In this scenario, we have a low privileged user account and in their home directory we find this backup folder.