Linux Privilege Escalation via Writable /etc/passwd (opens in new tab)
If /etc/passwd is world-writable, any user can inject a root account; no exploits, no CVEs. Just text editing.
Read the original articleIf /etc/passwd is world-writable, any user can inject a root account; no exploits, no CVEs. Just text editing.
Read the original article