🔥 3-day streak
CompTIA PenTest+ (PT0-003)73 / 175
Question 73 of 175

During post-exploitation on a Linux web server, a penetration tester has a shell as the low-privileged 'www-data' account. Enumeration shows that /etc/passwd is world-writable (permissions 666), while /etc/shadow remains root-owned and inaccessible. The tester has access to the 'openssl' binary. Which technique will most reliably escalate privileges to root using this misconfiguration?

Reviewed for accuracy · Report an issueNext question