My friend and I have had issues submitting flags on this box when we owned it. I had to wait nearly 20 minutes and wait for the flag to regenerate before the site would take it last night. Haven’t had the issue on the other ones. Friend had the same issue tonight when he did it. I’m running on a VIP instance and he was on the free server - both had the same issue.
This should be raised to HTB via a JIRA ticket. They cant fix it if they don’t know it is broken.
Anybody having issues with their root shell not persisting very long? I’ve managed to pop the root shell, but it seems to expire after ~5 seconds.
pm
Can you please pm me the same thing? I just rooted Time also (with a little help from a friend) but we both experienced a very very unstable root shell. It’s enough to get the flag, but it doesn’t feel solid. Any advice to improve is very welcome!
the user asked for sometime but the rest was easy except that the root shell was quite unstable. It can be kept next to traceback if i consider its easiness
I think i’ve found the vuln although there are two that I’m looking at. Not sure if maybe I am mistaken and maybe just going down a rabbit hole. I am getting an error “Objectno such class found" when trying to use "zh****.HC” class.
Finally! It was super interesting on the user part. Big thanks to @zaphoxx for the hint on user. Since I’m so noob I actually had difficulty with root but finally found it.
User : it’s all about the right CVE
Root : there are alternatives to cron
Been searching for this CVE based of my enumeration and the comments on this thread. I’m having trouble. Could someone give nudge towards the correct CVE?
Hello. Bit stuck on this one. I found the vulnerability but am having problems exploiting it. I think i have to compile my own java and then paste it in, but im having problems compiling something with javac. Getting errors like
Exploit.java:4: error: package com.sun.org.apache.xalan.internal.xsltc.runtime is not visible
Not sure I am even on the right track!