Rooted!!
Initial foothold is tricky, root is really very easy.
I struggled a lot because i did not clearly read output of commands.
Thanks to @Dark0 for initial foothold. Thanks to @Str4thus and @gonzaloFSF for hints towards root.
My hints:
Initial foothold:
- What has author created apart from cache ? It can be accessed.
- There are bunch of vulnerabilities. You need to use multiple vulnerabilities to get initial foothold. Identify which works. There is a video which explains how to do it.
User 1:
- You found something in foothold, its not useless. Flip the SWITCH !!
User 2:
- Check what services are running on machine. Found something related to machine name ?
- Good article to help you exploit it
Root:
- What permissions User 2 has
- GTFO
PM me if you need a hint
Also
I would like to know the method of initial foothold without hampering the machine. Could anyone enlighten me ?