Rooted. Also got root and user at the same time. Initial foothold was difficult and required a lot of learning about the service. From there, common CVE, like mentioned in other posts, just make sure to type everything in accurately and think about dumb things users do.
All in all, it was interesting learning to gain initial foothold without a common tool.