Apache Conf Privilege Escalation
Key Assumptions:
Configuration file can be updated by current user.
Reverse shell script can be writeable to the web site directory. Assume the website uses PHP, so we can create “shell.php” in the web root and insert PHP reverse shell script.
Apache can be restarted.
Last updated