Using NC in Linux to rebound local Simple Elevation of Privilege

Most of the time I got the shell, and then I couldn't execute a simple command in the course or Shell! It indicates that the permission is very dead or is forbidden by management! Here, NC has rebounded SHELL back to local to raise privilege! Let's take a look at the Linux kernel uanme-a2.6.18-194.11.3.el5 kernel. This is a good CentOS release 5.5 system! Find an Internet IP address to listen to 12666, of course, 12666 can also be changed. I use NC to listen to nc-l-n-v-p 12666 and then click your shell connection to see the following content. Then Baidu finds the EXP of the kernel 2.6.18-194, I have already added my favorites. then upload EXP to the/tmp directory through Webshell. Why do you want to upload it to this directory? In Linux, The tmp directory is generally writable and executable! Then we enter the/tmp directory cd/tmp and enter the tmp directory. Check that we uploaded 2.6.18-194. I have the permission to rwx, Which is readable and writable and executable. if you do not have the permission to execute the command chmod-R 777 file name, I have compiled the exp here, and it is OK to directly execute overflow. /2.6.18-194 If your exp is not compiled, execute gcc/tmp/file name first. c-o/tmp/file name command first compiled and executed. /2.6.18-194 running EXP is OK!