Just rooted. Honestly to sum up this box:
enumerate then go through steps in the many walkthrus for the service.
There are a bunch guides/exploits all over the place. All you have to do is pick the right one for this service.
From there a common place to check on the box should point you in the right direction to go. Follow it all the way through and remember if one way is blocked that you already had your foot in the door. Couple this with poor user behavior/management and the use of a recent-ish vuln makes it extremely easy to privesc to root.
PM if you any help 